CVE-2025-24425
11.02.2025, 18:15
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a Business Logic Error vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to circumvent intended security mechanisms by manipulating the logic of the application's operations causing limited data modification. Exploitation of this issue does not require user interaction.Enginsight
| Vendor | Product | Version |
|---|---|---|
| adobe | commerce | 𝑥 < 2.4.4 |
| adobe | commerce | 2.4.4 |
| adobe | commerce | 2.4.4:p1 |
| adobe | commerce | 2.4.4:p10 |
| adobe | commerce | 2.4.4:p11 |
| adobe | commerce | 2.4.4:p2 |
| adobe | commerce | 2.4.4:p3 |
| adobe | commerce | 2.4.4:p4 |
| adobe | commerce | 2.4.4:p5 |
| adobe | commerce | 2.4.4:p6 |
| adobe | commerce | 2.4.4:p7 |
| adobe | commerce | 2.4.4:p8 |
| adobe | commerce | 2.4.4:p9 |
| adobe | commerce | 2.4.5 |
| adobe | commerce | 2.4.5:p1 |
| adobe | commerce | 2.4.5:p10 |
| adobe | commerce | 2.4.5:p2 |
| adobe | commerce | 2.4.5:p3 |
| adobe | commerce | 2.4.5:p4 |
| adobe | commerce | 2.4.5:p5 |
| adobe | commerce | 2.4.5:p6 |
| adobe | commerce | 2.4.5:p7 |
| adobe | commerce | 2.4.5:p8 |
| adobe | commerce | 2.4.5:p9 |
| adobe | commerce | 2.4.6 |
| adobe | commerce | 2.4.6:p1 |
| adobe | commerce | 2.4.6:p2 |
| adobe | commerce | 2.4.6:p3 |
| adobe | commerce | 2.4.6:p4 |
| adobe | commerce | 2.4.6:p5 |
| adobe | commerce | 2.4.6:p6 |
| adobe | commerce | 2.4.6:p7 |
| adobe | commerce | 2.4.6:p8 |
| adobe | commerce | 2.4.7 |
| adobe | commerce | 2.4.7:p1 |
| adobe | commerce | 2.4.7:p2 |
| adobe | commerce | 2.4.7:p3 |
| adobe | commerce | 2.4.8:beta1 |
| adobe | commerce_b2b | 𝑥 < 1.3.3 |
| adobe | commerce_b2b | 1.3.3 |
| adobe | commerce_b2b | 1.3.3:p10 |
| adobe | commerce_b2b | 1.3.3:p11 |
| adobe | commerce_b2b | 1.3.4 |
| adobe | commerce_b2b | 1.3.4:p10 |
| adobe | commerce_b2b | 1.3.4:p9 |
| adobe | commerce_b2b | 1.3.5 |
| adobe | commerce_b2b | 1.3.5:p7 |
| adobe | commerce_b2b | 1.3.5:p8 |
| adobe | commerce_b2b | 1.4.2 |
| adobe | commerce_b2b | 1.4.2:p1 |
| adobe | commerce_b2b | 1.4.2:p2 |
| adobe | commerce_b2b | 1.4.2:p3 |
| adobe | commerce_b2b | 1.5.0 |
| adobe | magento | 𝑥 < 2.4.4 |
| adobe | magento | 2.4.4 |
| adobe | magento | 2.4.4:p1 |
| adobe | magento | 2.4.4:p10 |
| adobe | magento | 2.4.4:p11 |
| adobe | magento | 2.4.4:p2 |
| adobe | magento | 2.4.4:p3 |
| adobe | magento | 2.4.4:p4 |
| adobe | magento | 2.4.4:p5 |
| adobe | magento | 2.4.4:p6 |
| adobe | magento | 2.4.4:p7 |
| adobe | magento | 2.4.4:p8 |
| adobe | magento | 2.4.4:p9 |
| adobe | magento | 2.4.5 |
| adobe | magento | 2.4.5:p1 |
| adobe | magento | 2.4.5:p10 |
| adobe | magento | 2.4.5:p2 |
| adobe | magento | 2.4.5:p3 |
| adobe | magento | 2.4.5:p4 |
| adobe | magento | 2.4.5:p5 |
| adobe | magento | 2.4.5:p6 |
| adobe | magento | 2.4.5:p7 |
| adobe | magento | 2.4.5:p8 |
| adobe | magento | 2.4.5:p9 |
| adobe | magento | 2.4.6 |
| adobe | magento | 2.4.6:p1 |
| adobe | magento | 2.4.6:p2 |
| adobe | magento | 2.4.6:p3 |
| adobe | magento | 2.4.6:p4 |
| adobe | magento | 2.4.6:p5 |
| adobe | magento | 2.4.6:p6 |
| adobe | magento | 2.4.6:p7 |
| adobe | magento | 2.4.6:p8 |
| adobe | magento | 2.4.7 |
| adobe | magento | 2.4.7:p1 |
| adobe | magento | 2.4.7:p2 |
| adobe | magento | 2.4.7:p3 |
| adobe | magento | 2.4.8:beta1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration