Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-29297

Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier) are affected by a Improper Neutralization of Special Elements Used in a Template Engine vulnerability that could lead to arbitrary code execution by an admin-privilege authenticated attacker. Exploitation of this issue does not require user interaction.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.062
EPSS Ranking 90.3%
CVSS Severity
CVSS v3 Score 9.1
Products affected by CVE-2023-29297
  • Adobe » Commerce » Version: 2.3.7
    cpe:2.3:a:adobe:commerce:2.3.7
  • Adobe » Commerce » Version: 2.4.0
    cpe:2.3:a:adobe:commerce:2.4.0
  • Adobe » Commerce » Version: 2.4.1
    cpe:2.3:a:adobe:commerce:2.4.1
  • Adobe » Commerce » Version: 2.4.2
    cpe:2.3:a:adobe:commerce:2.4.2
  • Adobe » Commerce » Version: 2.4.3
    cpe:2.3:a:adobe:commerce:2.4.3
  • Adobe » Commerce » Version: 2.4.4
    cpe:2.3:a:adobe:commerce:2.4.4
  • Adobe » Commerce » Version: 2.4.5
    cpe:2.3:a:adobe:commerce:2.4.5
  • Adobe » Commerce » Version: 2.4.6
    cpe:2.3:a:adobe:commerce:2.4.6
  • Adobe » Magento » Version: 2.4.4
    cpe:2.3:a:adobe:magento:2.4.4
  • Adobe » Magento » Version: 2.4.5
    cpe:2.3:a:adobe:magento:2.4.5
  • Adobe » Magento » Version: 2.4.6
    cpe:2.3:a:adobe:magento:2.4.6


Products
Pricing
Contact Us

Shodan ® - All rights reserved