Security Updates Available for Adobe Commerce APSB22-12
We want to make sure you aware of a critical vulnerability associated with specific Magento 2 versions. Adobe has released security updates for Adobe Commerce and Magento Open Source. Below are the affected products and versions.
Adobe Commerce
- 2.4.0 – 2.4.3-p1
- 2.3.3-p1 – 2.3.7-p2
Magento Open Source
- 2.4.0 – 2.4.3-p1
- 2.3.3-p1 – 2.3.7-p2
*Adobe Commerce 2.3.3 and lower are not affected.
The vulnerability allows unauthenticated remote code to be executed by malicious actors and may lead to further privilege escalation or damage to your application and server.
We strongly suggest you install the custom patches from Adobe as soon as possible.