Adobe Commerce is an e-commerce platform used by many organizations to manage their online stores. The vulnerability in Adobe Commerce allows attackers to take over a user's session, potentially leading to unauthorized access to sensitive data and system configuration.
Affected versions: 15 If you don't recognise this software, you're probably not affected.
pom.xml dependency versionImmediate mitigations:
- Restrict network access to your Adobe Commerce instance (firewall it from the public internet)
- Audit admin account activity for suspicious access patterns
- Monitor for unauthorized token creation