As your managed hosting provider, QServers Network wants to make you aware of a critical vulnerability associated with the software package called “Magento” which you may be using on your hosting account.
On Sunday, February 13th, Adobe released a critical security patch for specific Magento 2 versions. The vulnerability allows unauthenticated remote code to be executed on your hosting account by malicious actors and may lead to further privilege escalation or damage to your application on our server.
We STRONGLY advise you apply the aforementioned patch as soon as possible. This software is not provided or supported by QServers Network.
More information and the patch can be found at:
https://helpx.adobe.com/security/products/magento/apsb22-12.html
https://www.integer-net.com/applying-the-magento-security-patch-via-composer/
https://sansec.io/research/magento-2-cve-2022-24086
Thank you for your prompt attention to this matter.
QServers Network
dateTime.tuesday, dateTime.february 15, 2022