Miklos Zoltan

**Name of the Vulnerable Software and Affected Versions** Adobe Commerce versions prior to 2.4.9-beta1 **Description** An incorrect authorization issue allows an attacker to bypass security measures and gain unauthorized write access. This process does not require user interaction. **Recommendations** Update to a version newer than 2.4.9-beta1.

**Name of the Vulnerable Software and Affected Versions** Adobe Commerce versions prior to 2.4.9-beta1 **Description** An improper limitation of a pathname to a restricted directory, known as path traversal, allows an authenticated attacker with administrative privileges to read and write arbitrary files outside the intended directory. This issue does not require user interaction. **Recommendations** Update to a version newer than 2.4.9-beta1.