Commerce
by Adobe
Standard maintenance is sufficient
Commerce has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
3.0%
Confirmed actively exploited (CISA)
1.8%
Public exploit code available
0.0%
Based on 169 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2024-34102 | 9.8 | 94.1% | Yes |
| CVE-2022-24086 | 9.8 | 93.6% | Yes |
| CVE-2025-54236 | 9.1 | 70.1% | Yes |
| CVE-2022-34253 | 7.2 | 37.2% | — |
| CVE-2022-34258 | 4.8 | 16.2% | — |
| CVE-2024-39397 | 9.0 | 9.2% | — |
| CVE-2023-29297 | 9.1 | 8.7% | — |
| CVE-2024-20720 | 9.1 | 7.2% | — |
| CVE-2024-34110 | 7.2 | 5.7% | — |
| CVE-2023-22249 | 4.8 | 5.2% | — |
| CVE-2023-22247 | 7.5 | 4.8% | — |
| CVE-2024-34108 | 9.1 | 4.3% | — |
| CVE-2024-34109 | 7.2 | 4.3% | — |
| CVE-2023-38208 | 9.1 | 2.9% | — |
| CVE-2022-35698 | 10.0 | 2.8% | — |
| CVE-2024-20758 | 9.0 | 2.2% | — |
| CVE-2024-34105 | 4.8 | 2.0% | — |
| CVE-2024-45116 | 8.1 | 1.8% | — |
| CVE-2024-34103 | 8.1 | 1.8% | — |
| CVE-2025-24410 | 8.7 | 1.8% | — |
4
/ 100
low-risk
Active Threat
3/50 · Minimal
Exploit Availability
1/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.