Description
Magento versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper access control vulnerability within Magento's Media Gallery Upload workflow. By storing a specially crafted file in the website gallery, an authenticated attacker with administrative privilege can gain access to delete the .htaccess file. This could result in the attacker achieving remote code execution.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://helpx.adobe.com/security/products/magento/apsb21-64.html
Scores
CVSS v3
7.2
EPSS
0.0118
EPSS Percentile
79.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-284
Status
published
Products (5)
magento/community-edition
0 - 2.3.7-p1Packagist
magento/magento
2.3.7 (2 CPE variants)
magento/magento
2.4.2 (4 CPE variants)
magento/magento
< 2.3.7 (2 CPE variants)
magento/project-community-edition
0Packagist
Published
Sep 06, 2023
Tracked Since
Feb 18, 2026