Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper improper authorization vulnerability. An attacker with admin privileges could leverage this vulnerability to achieve remote code execution.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2021-09-01T14:29:55.051477Z

Updated: 2024-09-16T19:46:09.476Z

Reserved: 2021-06-30T00:00:00

Link: CVE-2021-36029

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-09-01T15:15:09.513

Modified: 2024-11-21T06:12:59.107

Link: CVE-2021-36029

cve-icon Redhat

No data.