This week, Adobe has released an essential security update for both Magento Open Source and Adobe Commerce. That means it's vital you update your Magento platform as soon as possible.
| Bulletin ID | Date Published | Priority |
| APSB24-18 | 9th April, 2024 | 3 |
Released on 9th April, the update fixes critical vulnerabilities. In Adobe’s own definition, a ‘critical’ vulnerability is one that could be exploited to allow malicious, native-code to run, potentially without the user being aware. This is part of Adobe’s robust and regular updates to ensure platform security remains a high priority.
The security update for Magento Open Source and Adobe Commerce has been labelled as ‘Priority 3’. This means the update resolves vulnerabilities that weren’t a target for attackers historically, but have become a target as technology evolves. It’s for this reason that it’s highly recommended to keep your platform security up to date.
All versions of Magento Open Source are affected by the security update, as are all versions of Adobe Commerce, as listed below:
| Product | Version | Platform |
| Magento Open Source | 2.4.7-beta3 and earlier2.4.6-p4 and earlier2.4.5-p6 and earlier2.4.4-p7 and earlier | All |
| Adobe Commerce | 2.4.7-beta3 and earlier2.4.6-p4 and earlier2.4.5-p6 and earlier2.4.4-p7 and earlier2.4.3-ext-6 and earlier*2.4.2-ext-6 and earlier*2.4.1-ext-6 and earlier*2.4.0-ext-6 and earlier*2.3.7-p4-ext-6 and earlier* | All |
*Versions 2.4.3-ext-6 and earlier are applicable to those using the platform as part of Adobe’s Extended Support Program.
To find out more about the security update, head to the latest Adobe Security Bulletin.
Security is incredibly important to us and our clients. If you have any concerns or your eCommerce development agency isn’t proactive, then we'll be happy to help. Get in contact with us if you’d like to find out more about how we can keep your Magento site secure for both Magento Open Source and Adobe Commerce.
