APSB22-12 - APSB22-12: Security update available for Adobe Commerce Security Update - Adobe Digest

Bulletin Information

Bulletin ID: APSB22-12
Product: APSB22-12: Security update available for Adobe Commerce
Published: February 13, 2022
Priority: February 17, 2022
Severity: Critical

Affected Versions

Adobe Commerce: 2.4.3-p1 and earlier versions
2.3.7-p2 and earlier versions: All
Magento Open Source: 2.4.3-p1 and earlier versions
2.3.7-p2 and earlier versions: All

Vulnerability Details

Total Vulnerabilities: 2

Severity Breakdown:

Critical: 2

Key Vulnerabilities:

1. PRODSECBUG-3118

Category: Improper Input Validation (CWE-20)
Impact: Arbitrary Code Execution
Severity: Critical
CVSS Score: 9.8
Authentication Required: No

2. PRODSECBUG-3120

Category: Improper Input Validation (CWE-20)
Impact: Arbitrary Code Execution
Severity: Critical
CVSS Score: 9.8
Authentication Required: No

Read Full Bulletin on Adobe Security Portal →

Previous Next Home