CVE-2022-24086
Adobe Commerce and Magento Open Source Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
99.2%
p100
KEV
YES
Feb 15, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
99.2%EPSS · 30 days99.2%
2026-06-302026-07-16
Product
Adobe / Commerce and Magento Open Source
Vulnerability
Adobe Commerce and Magento Open Source Improper Input Validation Vulnerability
Added to KEV
Feb 15, 2022
Remediate by
Mar 1, 2022
Known ransomware use
No
Summary description
Adobe Commerce and Magento Open Source contain an improper input validation vulnerability which can allow for arbitrary code execution.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2022-24086