Is CVE-2024-34102 in the CISA Known Exploited Vulnerabilities catalog?

Yes — CVE-2024-34102 is listed in CISA KEV, remediation due 2024-08-07.

Which frameworks does CVE-2024-34102 affect?

CVE-2024-34102 affects Magento.

CISA Known Exploited Vulnerability

CVE-2024-34102

Adobe Commerce and Magento Open Source contain an improper restriction of XML external entity reference (XXE) vulnerability that allows for remote code execution.

⚠ Actively exploited (CISA KEV) Magento 2024

CISA catalog entry

Product

Commerce and Magento Open Source

Vendor

Adobe

Added to KEV

2024-07-17

Remediation due

2024-08-07

CVE-2024-34102 is tracked in the CISA Known Exploited Vulnerabilities catalog. WebPulse monitors it as part of its framework security intelligence.

View CVE-2024-34102 on the NIST National Vulnerability Database →

Related vulnerabilities

CVE-2026-45247 CVE-2025-54236 CVE-2022-24086 CVE-2024-47575 CVE-2024-3400 CVE-2024-21887