CVE-2024-45120 - Adobe Commerce TOCTOU Race Condition Security Feature Bypass Vulnerability

1 month ago 15
ARTICLE AD BOX
CVE ID : CVE-2024-45120
Published : Oct. 10, 2024, 10:15 a.m. | 24 minutes ago
Description : Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could lead to a security feature bypass. An attacker could exploit this vulnerability to alter a condition between the check and the use of a resource, having a low impact on integrity. Exploitation of this issue requires user interaction.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article