Tom&Co
Let's talk
15+Years Trading
£3bnRevenue Processed
75Team Size
B2C & B2BExperience
Strategy-ledRetainer
1 WeekDiscovery
< 6 MonthsReplatform
15+Years Trading
£3bnRevenue Processed
75Team Size
B2C & B2BExperience
Strategy-ledRetainer
1 WeekDiscovery
< 6 MonthsReplatform
15+Years Trading
£3bnRevenue Processed
75Team Size
B2C & B2BExperience
Strategy-ledRetainer
1 WeekDiscovery
< 6 MonthsReplatform
Tom&Co
Let's talk
15+Years Trading
£3bnRevenue Processed
75Team Size
B2C & B2BExperience
Strategy-ledRetainer
1 WeekDiscovery
< 6 MonthsReplatform
15+Years Trading
£3bnRevenue Processed
75Team Size
B2C & B2BExperience
Strategy-ledRetainer
1 WeekDiscovery
< 6 MonthsReplatform
15+Years Trading
£3bnRevenue Processed
75Team Size
B2C & B2BExperience
Strategy-ledRetainer
1 WeekDiscovery
< 6 MonthsReplatform
Back to Blog
Adobe Commerce updates

Critical Security Updates for Magento 2.4.1, 2.3.6, and 2.4.0-p1

Adobe releases 15+ critical security improvements closing remote code execution and XSS vulnerabilities.

6 min
By Tom&Co Team
Critical Security Updates for Magento 2.4.1, 2.3.6, and 2.4.0-p1

Critical Security Updates Released

Adobe has released critical security patches addressing 15+ vulnerabilities across Magento 2.4.1, 2.3.6 and 2.4.0-p1. These updates close severe security gaps including remote code execution and XSS vulnerabilities.

Understanding the Vulnerabilities

RCE vulnerabilities allow attackers to execute arbitrary code on your server. XSS vulnerabilities allow injection of malicious scripts affecting customers.

Which Versions Are Affected

Critical patches apply to Magento 2.4.1, 2.3.6 and 2.4.0-p1. Apply patches immediately if you run any version.

What Merchants Should Do

Log into your Magento admin and confirm version. Test patches in staging first. Download from Adobe and apply to production. Monitor after patching.

Staying Secure

Keep Magento updated, harden your admin interface, implement WAF rules, conduct security audits, and monitor logs actively.

Want to read more insights?

View All Articles

Related Articles

Continue reading with these related insights and updates from our team.

Magento 2.4.2 Released: PHP 8.0 Support and 280+ Fixes
Adobe Commerce updates

Magento 2.4.2 Released: PHP 8.0 Support and 280+ Fixes

Magento 2.4.2 brings PHP 8.0 compatibility alongside inventory management upgrades, performance improvements and over 280 bug fixes for merchants.

5 min
Magento Upgrade Compatibility Tool Released
Adobe Commerce updates

Magento Upgrade Compatibility Tool Released

New tool identifies compatibility issues before upgrading, simplifying migration path for merchants planning major version updates.

5 min
Magento Commerce Officially Rebranded as Adobe Commerce
Adobe Commerce updates

Magento Commerce Officially Rebranded as Adobe Commerce

Adobe consolidates branding strategy: Magento Commerce becomes Adobe Commerce.

5 min
View All Articles

Explore More Solutions

Adobe Commerce (Magento) Development

Expert Adobe Commerce (Magento) and Magento development in London

Service

E-commerce Strategy

Strategic e-commerce consulting for digital growth

Service

SEO Optimisation

Technical SEO for e-commerce websites

Service

Design & UX

User experience design for e-commerce conversion

Service