THREAT OPS › CVEs › CVE-2024-34102
CVE-2024-34102 — Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability
Adobe Commerce and Magento Open Source contain an improper restriction of XML external entity reference (XXE) vulnerability that allows for remote code execution.
Vulnerability details
- Affected productsCommerce and Magento Open Source
- KEV remediation due2024-08-07