Adobe Commerce versions 2.4.4-p2 (and earlier) and 2.4.5-p1 (and earlier) are affected by an Incorrect Authorization vulnerability. A low-privileged authenticated attacker could leverage this vulnerability to achieve minor information disclosure.
{ "github_reviewed_at": "2025-03-04T16:14:40Z", "nvd_published_at": "2023-03-27T21:15:00Z", "github_reviewed": true, "cwe_ids": [ "CWE-863" ], "severity": "MODERATE" }