Incorrect Authorization Vulnerability in Adobe Commerce Affects Multiple Versions
CVE-2025-54277
5.3MEDIUM
What is CVE-2025-54277?
Adobe Commerce versions earlier than 2.4.9-alpha2 are susceptible to an incorrect authorization vulnerability. This weakness allows an unauthorized attacker to bypass established security protocols, resulting in potential limited read access to sensitive information without the need for user interaction. The issue highlights the importance of robust security measures within e-commerce platforms.
Affected Version(s)
Adobe Commerce 0 <= 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15