Description Adobe has released a security update that fixes total 29 vulnerabilities in Magento and Adobe connect, including 10 pre-authentication vulnerabilities in Magento. Successful exploitation of critical and pre-authentication vulnerabilities could allow attacker to execute arbitrary code, bypass security feature and elevate the privileges on the affected systems. Affected Products: • Adobe Connect - 11.2.2 and earlier versions • Magento Commerce - 2.4.2 and earlier versions • Magento Commerce - 2.4.2-p1 and earlier versions • Magento Commerce - 2.3.7 and earlier versions • Magento Open Source - 2.4.2-p1 and earlier versions • Magento Open Source - 2.3.7 and earlier versions Recommendation Workaround: • It is recommended to update the affected products to their latest available versions/patch level. References https://helpx.adobe.com/security/products/magento/apsb21-64.html
https://helpx.adobe.com/security/products/connect/apsb21-66.html
Comments