POC exploit for Adobe Commerce and Magento vulnerability prompts another out-of-band patch update for CVE-2022-24087. Adobe issued the update on Feb. 13 to fix the bug, but a new fix has been issued for Magento 2, to mitigate the pre-authenticated remote code execution. The vulnerabilities fall under the “improper input validation” category, with an identical CVSS base score of 9.8. Adobe has assigned both the vulnerabilities the highest patch priority rating. It recommends that users and admins install the updates within 72 hours.”]
Source: https://www.cuinfosecurity.com/patched-adobe-commerce-magento-last-week-patch-again-a-18567