VYPR
Medium severity5.5OSV Advisory· Published Jun 11, 2024· Updated Apr 15, 2026

CVE-2024-37294

CVE-2024-37294

Description

Aimeos is an Open Source e-commerce framework for online shops. All SaaS and marketplace setups using Aimeos version from 2022/2023/2024 are affected by a potential denial of service attack. Users should upgrade to versions 2022.10.17, 2023.10.17, or 2024.04 of the aimeos/aimeos-core package to receive a patch.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
aimeos/aimeos-corePackagist
>= 2024.04.1, < 2024.04.72024.04.7
aimeos/aimeos-corePackagist
>= 2023.04.1, < 2023.10.172023.10.17
aimeos/aimeos-corePackagist
>= 2022.04.1, < 2022.10.172022.10.17

Affected products

2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.