CVE-2025-43585 | Adobe Commerce improper authorization (apsb25-50)
A vulnerability was found in Adobe Commerce up to 2.4.4-p13/ 2.4.5-p12/ 2.4.6-p10/ 2.4.7-p5/2.4.8. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authorization.
This vulnerability is known as CVE-2025-43585. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.