Configured Commerce

5 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-22387 HIGH This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Configured Commerce
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2025-22386 HIGH This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Configured Commerce
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2025-22385 MEDIUM This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Configured Commerce
NVD
CVSS 3.1
5.9
EPSS
0.4%
CVE-2025-22384 HIGH This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Configured Commerce
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2025-22383 MEDIUM Monitor

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Configured Commerce
NVD
CVSS 3.1
4.6
EPSS
0.3%
CVE-2025-22387
EPSS 0% CVSS 7.5
HIGH This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Configured Commerce
NVD
CVE-2025-22386
EPSS 0% CVSS 7.3
HIGH This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Configured Commerce
NVD
CVE-2025-22385
EPSS 0% CVSS 5.9
MEDIUM This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Configured Commerce
NVD
CVE-2025-22384
EPSS 0% CVSS 7.5
HIGH This Month

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Configured Commerce
NVD
CVE-2025-22383
EPSS 0% CVSS 4.6
MEDIUM Monitor

An issue was discovered in Optimizely Configured Commerce before 5.2.2408. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Configured Commerce
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy