Attackers Target Critical Vulnerability in Adobe Commerce and Magento
In September, Adobe released updates for Commerce and Magento that close a critical vulnerability.
Admins should install them quickly, as attacks on the vulnerabilities are now underway. Adobe has updated and supplemented the security advisory for the vulnerability, stating that the company is aware of internet attacks targeting the flaw.
The company refers to the "Common Weakness Enumeration" classification of the problems, which is an Improper Input Validation (CWE-20) that leads to the bypass of security functions (CVE-2025-54236, CVSS 9.1, Risk "critical").
Adobe is aware of internet attacks targeting the flaw.
Author's summary: Adobe updates fix critical vulnerability.
- CVE: CVE-2025-54236
- CVSS: 9.1
- Risk: Critical
More News
- Report: Food Companies Are Not Effectively Meeting Demand for Plant-Based Proteins - vegconomist - the vegan business magazine
- GSK secures rights to Syndivia’s ADC asset for prostate cancer
- 11 Members of Gakharia’s Party Take MP Seats in Disputed Parliament - Civil Georgia
- Grokipedia launches after brief crash, accused of copying Wikipedia content - Tech Digest
- Elon Musk’s Unveils Grokipedia - IT News Africa | Business Technology, Telecoms and Startup News
- UPS: Q3 Earnings Snapshot - WTOP News
- Phinia: Q3 Earnings Snapshot - WTOP News
- Kaishan signs steam supply agreement for 165-MW geothermal green ammonia facility in Kenya
- How PepsiCo, Walmart and other agrifood companies fortify their supply chains with AI
- Investors urge food firms to boost plant proteins