Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability during the checkout process. An unauthenticated attacker can leverage this vulnerability to alter the price of items.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2021-09-01T14:31:19.323871Z

Updated: 2024-09-17T03:39:08.695Z

Reserved: 2021-06-30T00:00:00

Link: CVE-2021-36030

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-09-01T15:15:09.570

Modified: 2024-11-21T06:12:59.227

Link: CVE-2021-36030

cve-icon Redhat

No data.