Known Vulnerabilities for Magento by Magento
Listed below are 10 of the newest known vulnerabilities associated with "Magento" by "Magento".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40488 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-40098 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-25525 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-21 |
| CVE-2026-25524 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2025-58669 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Modern Minds Magento 2 ... | Not Provided | 2025-09-22 | 2026-04-23 |
| CVE-2022-42344 json | Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Incorrect A... | 8.8 - HIGH | 2022-10-20 | 2023-12-04 |
| CVE-2022-34259 json | Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Ac... | 5.3 - MEDIUM | 2022-08-16 | 2023-07-21 |
| CVE-2022-34258 json | Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by a stored Cross... | 4.8 - MEDIUM | 2022-08-16 | 2022-11-04 |
| CVE-2022-34257 json | Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by a stored Cross... | 6.1 - MEDIUM | 2022-08-16 | 2022-11-04 |
| CVE-2022-34256 json | Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Au... | 9.8 - CRITICAL | 2022-08-16 | 2022-08-31 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Magento | Magento | 2.4.1 | |||
| Application | Magento | Magento | 2.4.1 | |||
| Application | Magento | Magento | 2.4.0 | |||
| Application | Magento | Magento | 2.4.0 | |||
| Application | Magento | Magento | 2.4.0 | |||
| Application | Magento | Magento | 2.4.0 | |||
| Application | Magento | Magento | 2.4.0 | |||
| Application | Magento | Magento | 2.4.0 | |||
| Application | Magento | Magento | 2.3.6 | |||
| Application | Magento | Magento | 2.3.6 | |||
| Application | Magento | Magento | 2.3.5 | |||
| Application | Magento | Magento | 2.3.5 | |||
| Application | Magento | Magento | 2.3.5 | |||
| Application | Magento | Magento | 2.3.5 | |||
| Application | Magento | Magento | 2.3.5 | |||
| Application | Magento | Magento | 2.3.5 | |||
| Application | Magento | Magento | 2.3.4 | |||
| Application | Magento | Magento | 2.3.4 | |||
| Application | Magento | Magento | 2.3.3 | |||
| Application | Magento | Magento | 2.3.3 |