Your Magento store might be at a high risk of cyberattack! Adobe has recently announced that a zero-day RCE bug is being exploited by the hackers in the wild, and has released an emergency security patch to fix the issue.
How to Prevent the Possible Attack?
According to Adobe, the newly discovered RCE bug affects stores running on Adobe Commerce (2.3.3-p1-2.3.7-p2) and Magento Open Source (2.4.0-2.4.3-p1). The vulnerability has been marked as critical by Adobe and stores running on the said versions need to apply the security patch to fix the issue ASAP!
The Magento remote code execution (RCE) bug has been rated 9.8/10 by the CVSS and can be tracked through the tracking id CVE-2022-24086, which is assigned by the CVE database.
The RCE vulnerability is highly critical and can allow the attackers to execute codes remotely on the victim stores. Adobe has released emergency security patches APSB22-12 to tackle the cyber risk.
The stores that are running on the said versions of Magento Open Source and Adobe Commerce must apply the patch as soon as possible to prevent any kind of cyberattack and exploitation.
Stores that are running on Adobe Commerce & Magento Open source can get the latest security patch installed through Meetanshi’s Magento Patch Installation Service. It can help safeguard the online stores against any possible exploitation from the RCE bug.
Read more at: https://meetanshi.com/blog/install-magento-2-security-patch-apsb22-12/
No comments:
Write comments