漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Adobe Commerce | Improper Input Validation (CWE-20)
Vulnerability Description
Adobe Commerce versions 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution on the underlying filesystem. Exploitation of this issue does not require user interaction, but the attack complexity is high.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Adobe Commerce 输入验证错误漏洞
Vulnerability Description
Adobe Commerce是美国奥多比(Adobe)公司的一种面向商家和品牌的全球领先的数字商务解决方案。 Adobe Commerce 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 版本存在输入验证错误漏洞,该漏洞源于容易受到不正确输入验证漏洞的影响,该漏洞可能导致在当前用户的环境中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A