Security Advisory

CVE-2025-54263

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-14 20:27:56

Last updated 2026-02-26 16:57:54

Assigner adobe

State PUBLISHED

Description

Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Incorrect Authorization vulnerability. A low-privileged attacker could leverage this vulnerability to bypass security measures and maintain unauthorized access. Exploitation of this issue does not require user interaction.

← Browse all CVEs View on cve.org ↗