Incorrect Authorization Vulnerability in Adobe Commerce
CVE-2026-21309
7.5HIGH
What is CVE-2026-21309?
Adobe Commerce suffers from an Incorrect Authorization vulnerability that may enable attackers to bypass existing security mechanisms, leading to unauthorized access to sensitive data. This security flaw impacts several versions of Adobe Commerce, allowing potential exploitation without requiring any user interaction. Organizations running affected versions should address this vulnerability promptly to safeguard their data integrity and security.
Affected Version(s)
Adobe Commerce 0 <= 2.4.4-p16