Adobe Commerce/Magento up to 2.4.4-p8/2.4.5-p7/2.4.6-p5/2.4.7 XML Document xml external entity reference

Summaryinfo

A vulnerability was found in Adobe Commerce and Magento up to 2.4.4-p8/2.4.5-p7/2.4.6-p5/2.4.7. It has been classified as problematic. Affected is an unknown function of the component XML Document Handler. Performing a manipulation results in xml external entity reference. This vulnerability is known as CVE-2024-34102. Remote exploitation of the attack is possible. Furthermore, an exploit is available. Applying a patch is the recommended action to fix this issue.

Detailsinfo

A vulnerability classified as critical has been found in Adobe Commerce and Magento up to 2.4.4-p8/2.4.5-p7/2.4.6-p5/2.4.7. This affects an unknown code block of the component XML Document Handler. The manipulation with an unknown input leads to a xml external entity reference vulnerability. CWE is classifying the issue as CWE-611. The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by sending a crafted XML document that references external entities. Exploitation of this issue does not require user interaction.

The advisory is shared at helpx.adobe.com. This vulnerability is uniquely identified as CVE-2024-34102 since 04/30/2024. The exploitability is told to be easy. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. Technical details are unknown but a public exploit is available.

The exploit is shared for download at packetstormsecurity.com. It is declared as attacked. The vulnerability scanner Nessus provides a plugin with the ID 242634 (Adobe Commerce/Magento Open Source Multiple Vulnerabilities (APSB24-40)), which helps to determine the existence of the flaw in a target environment. The CISA Known Exploited Vulnerabilities Catalog lists this issue since 07/17/2024 with a due date of 08/07/2024:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Applying a patch is able to eliminate this problem.

The vulnerability is also documented in the vulnerability database at Tenable (242634). If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Productinfo

Type

• E-Commerce Management Software

Vendor

• Adobe

Name

• Commerce
• Magento

Version

• 2.4.0
• 2.4.1
• 2.4.2
• 2.4.3
• 2.4.4
• 2.4.4-p8
• 2.4.5
• 2.4.5-p7
• 2.4.6
• 2.4.6-p5
• 2.4.7

License

• commercial

Website

• Vendor: https://www.adobe.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Discussion