CVE-2025-27192
CVE-2025-27192
Título es
CVE-2025-27192
Mar, 08/04/2025 – 21:15
Tipo
CWE-522
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2025-27192
Descripción en
Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could lead to a security feature bypass. A high privileged attacker could exploit this vulnerability to gain unauthorized access to protected resources by obtaining sensitive credential information. Exploitation of this issue does not require user interaction.
08/04/2025
08/04/2025
Vector CVSS:3.1
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Gravedad 3.1 (CVSS 3.1 Base Score)
2.70
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
LOW
Enviar en el boletín
Off
