CVE-2024-34102 | Adobe Commerce/Magento up to 2.4.4-p8/2.4.5-p7/2.4.6-p5/2.4.7 XML Document xml external entity reference (apsb24-40)
A vulnerability classified as critical has been found in Adobe Commerce and Magento up to 2.4.4-p8/2.4.5-p7/2.4.6-p5/2.4.7. This affects an unknown part of the component XML Document Handler. The manipulation leads to xml external entity reference.
This vulnerability is uniquely identified as CVE-2024-34102. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.