北京赛克艾威科技有限公司 2024-07-17
Adobe Commerce and Magento Open Source contain an improper restriction of XML external entity reference \(XXE\) vulnerability that allows for remote code execution.
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
https://helpx.adobe.com/security/products/magento/apsb24-40.html
https://www.cisa.gov/known-exploited-vulnerabilities-catalog