Adobe Commerce 2.4.7-p2 Security Patch

The Adobe Commerce 2.4.7-p2 security patch provides security bug fixes for vulnerabilities identified in previous releases of 2.4.7.

2.4.7-p2 Security Patch Highlights

Here are the highlights that Adobe have provided for the security patch:

• Rate limiting for one-time passwords

• Retry attempt limit for Two-Factor Authentication

• Two-Factor Authentication lockout time (seconds)

• Encryption key rotation

• Fix for CVE-2020-27511

• Fix for CVE-2024-39397
  
  
  

2.4.7-p2 Security Patch Hotfixes

Adobe has provided the below hotfixes in this security patch:

• Hotfix to resolve a JavaScript error that prevented Google Maps from rendering properly in the PageBuilder editor.

• Hotfix to resolve a JSON web token (JWT) validation issue related to CVE-2024-34102.

For more information and the full 2.4.7-p2 release notes, please visit the official 2.4.7-p2 release notes page

Need help in updating your Magento site? Get in touch with us below.