Magento: SSRF Vulnerability in Adobe Commerce Versions - Proactive Insights and Support For Open-Source Applications

In Magento Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8, and earlier, a high severity Server-Side Request Forgery (SSRF) vulnerability CVE-2024-34111 was detected. This vulnerability allows attackers to force the application to make arbitrary requests, potentially leading to arbitrary file system reads. Exploitation of this issue does not require user interaction. For more details, visit https://avd.aquasec.com/nvd/2024/cve-2024-34111.