Total vulnerabilities in the database
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low privileged attacker could exploit this vulnerability to perform actions with permissions that were not granted leading to both a High impact to confidentiality and Low impact to integrity. Exploitation of this issue does not require user interaction.
| Software | From | Fixed in |
|---|---|---|
| adobe / commerce_b2b | 1.4.2-p1 | 1.4.2-p1.x |
| adobe / commerce_b2b | 1.4.2-p2 | 1.4.2-p2.x |
| adobe / commerce_b2b | 1.4.2 | 1.4.2.x |
| adobe / commerce_b2b | 1.3.5-p7 | 1.3.5-p7.x |
| adobe / commerce_b2b | 1.3.4-p9 | 1.3.4-p9.x |
| adobe / commerce_b2b | 1.3.4 | 1.3.4.x |
| adobe / commerce_b2b | 1.3.3 | 1.3.3.x |
| adobe / commerce_b2b | 1.3.3-p10 | 1.3.3-p10.x |
| adobe / commerce_b2b | 1.3.3-p11 | 1.3.3-p11.x |
| adobe / commerce_b2b | 1.3.4-p10 | 1.3.4-p10.x |
| adobe / commerce_b2b | 1.3.5 | 1.3.5.x |
| adobe / commerce_b2b | 1.3.5-p8 | 1.3.5-p8.x |
| adobe / commerce_b2b | 1.4.2-p3 | 1.4.2-p3.x |
| adobe / commerce_b2b | 1.5.0 | 1.5.0.x |
| adobe / commerce_b2b | - | 1.3.3 |