Global CyberSecurity

Adobe Patches Critical RCE Vulnerability in Magento2


Last Updated on 02/16/2022 by OTC

On Sunday, February 13th, Adobe pushed an emergency update to their Magento2 ecommerce software patching a critical unauthenticated remote code execution vulnerability. It is marked as CVE-2022-24086 with a CVSS score of 9.8. Website administrators of Magento stores should patch immediately.

Shop owners of Magento 2.3 or 2.4 stores can find the patch to install here. Instructions on how to install Magento security patches via Composer can be found here.

Our website firewall generic rules block RCE exploitation attempts by default but given the severity of the vulnerability website administrators should not leave their websites unpatched.

Continue reading Adobe Patches Critical RCE Vulnerability in Magento2 at Sucuri Blog.

How do I secure WordPress Websites for Free?

Previous article

Attackers Abuse Poorly Regulated Top-Level Domains in Ongoing Redirect Campaign

Next article

You may also like


Comments are closed.