Mirasvit Vulnerability Exploited to Execute Code on Magento Servers
Summary
A vulnerability in Mirasvit's Full Page Cache Warmer extension for Magento servers is being exploited. Attackers can execute code on these servers without authentication by sending serialized PHP object payloads.
IFF Assessment
This vulnerability allows attackers to execute arbitrary code on Magento servers, posing a direct threat to businesses relying on this platform.
Severity
The vulnerability allows for unauthenticated remote code execution, which has a high attack vector and significant impact, leading to a critical severity score.
Defender Context
This incident highlights the critical need for merchants using Magento to promptly patch or update their Full Page Cache Warmer extension. Defenders should monitor their Magento server logs for suspicious activity, particularly any attempts to exploit serialized PHP objects.