CVE-2024-34102

CRITICAL KEV NUCLEI

CosmicSting: Magento Arbitrary File Read (CVE-2024-34102) + PHP Buffer Overflow in the iconv() function of glibc (CVE-2024-2961)

Title source: metasploit

Description

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by sending a crafted XML document that references external entities. Exploitation of this issue does not require user interaction.

Exploits (27)

nomisec WORKING POC 48 stars
by Chocapikk · infoleak
https://github.com/Chocapikk/CVE-2024-34102
nomisec WORKING POC 31 stars
by bigb0x · infoleak
https://github.com/bigb0x/CVE-2024-34102
nomisec WORKING POC 14 stars
by th3gokul · infoleak
https://github.com/th3gokul/CVE-2024-34102
nomisec WORKING POC 9 stars
by jakabakos · infoleak
https://github.com/jakabakos/CVE-2024-34102-CosmicSting-XXE-in-Adobe-Commerce-and-Magento
nomisec WORKING POC 6 stars
by bughuntar · infoleak
https://github.com/bughuntar/CVE-2024-34102
nomisec WORKING POC 3 stars
by EQSTLab · remote
https://github.com/EQSTLab/CVE-2024-34102
nomisec WORKING POC 3 stars
by 11whoami99 · infoleak
https://github.com/11whoami99/CVE-2024-34102
nomisec WORKING POC 2 stars
by 0x0d3ad · infoleak
https://github.com/0x0d3ad/CVE-2024-34102
nomisec WRITEUP 1 stars
by wubinworks · poc
https://github.com/wubinworks/magento2-cosmic-sting-patch
nomisec STUB 1 stars
by Phantom-IN · poc
https://github.com/Phantom-IN/CVE-2024-34102
nomisec WORKING POC
by nmmorette · remote
https://github.com/nmmorette/CVE-2024-34102
nomisec WORKING POC
by Kento-Sec · remote
https://github.com/Kento-Sec/CVE-2024-34102
nomisec STUB
by Koray123-debug · poc
https://github.com/Koray123-debug/CVE-2024-34102
nomisec WORKING POC
by dream434 · poc
https://github.com/dream434/CVE-2024-34102
nomisec WORKING POC
by SamJUK · infoleak
https://github.com/SamJUK/cosmicsting-validator
nomisec WORKING POC
by mksundaram69 · infoleak
https://github.com/mksundaram69/CVE-2024-34102
nomisec WORKING POC
by wubinworks · poc
https://github.com/wubinworks/magento2-encryption-key-manager-cli
nomisec WORKING POC
by bka · infoleak
https://github.com/bka/magento-cve-2024-34102-exploit-cosmicstring
nomisec NO CODE
by crynomore · poc
https://github.com/crynomore/CVE-2024-34102
nomisec NO CODE
by unknownzerobit · poc
https://github.com/unknownzerobit/poc
nomisec WORKING POC
by d0rb · infoleak
https://github.com/d0rb/CVE-2024-34102
nomisec NO CODE
by ArturArz1 · poc
https://github.com/ArturArz1/TestCVE-2024-34102
metasploit WORKING POC EXCELLENT
by Sergey Temnikov, Charles Fol, Heyder, jheysel-r7 · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/magento_xxe_to_glibc_buf_overflow.rb
metasploit WORKING POC
by Sergey Temnikov, Heyder · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/magento_xxe_cve_2024_34102.rb

Nuclei Templates (1)

Adobe Commerce & Magento - CosmicSting
CRITICALVERIFIEDby DhiyaneshDK
FOFA: app="Adobe-Magento"

References (3)

Scores

CVSS v3 9.8
EPSS 0.9413
EPSS Percentile 99.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2024-07-17
VulnCheck KEV 2024-07-12
InTheWild.io 2024-07-17
ENISA EUVD EUVD-2024-2102
CWE
CWE-611
Status published
Products (9)
adobe/commerce 2.4.2 (6 CPE variants)
adobe/commerce 2.4.3 (6 CPE variants)
adobe/commerce 2.4.4 (8 CPE variants)
adobe/commerce 2.4.5 (7 CPE variants)
adobe/commerce 2.4.6 (5 CPE variants)
adobe/commerce 2.4.7
adobe/commerce_webhooks 1.2.0 - 1.5.0
adobe/magento 2.4.4 (9 CPE variants)
adobe/magento 2.4.5 (7 CPE variants)
Published Jun 13, 2024
KEV Added Jul 17, 2024
Tracked Since Feb 18, 2026