Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Mirasvit Cache Warmer RCE (CVE-2026-45247)

Vulnerability
First reported
Last updated
Happening score
H score 63
1 unique sources, 1 articles

Summary

Hide ▲

CVE-2026-45247 is a critical deserialization of untrusted data flaw in Mirasvit Cache Warmer that enables unauthenticated remote code execution on affected Magento servers. The vulnerability affects versions prior to 1.11.12 and is being actively exploited in the wild. Fixes were released on May 25, 2026.

Cases

Mirasvit Cache Warmer Exploitation on Magento Stores (2)

Related Happenings

Magento exploitation wave for CVE-2026-45247

Exploitation Wave
First: 04.06.2026 10:19 Last: 04.06.2026 10:19 Sources 1

How related: "Thales-owned Imperva has since disclosed it has observed active attack activity attempting to exploit CVE-2026-45247 through serialized PHP object payloads delivered via malicious HTTP requests."

About this happening: Active exploitation of **CVE-2026-45247** is hitting **Mirasvit Cache Warmer** on **Magento** stores, with malicious requests carrying serialized PHP payloads that can lead to **r...

Open Happening

CISA KEV listing for Wing FTP CVE-2025-47813

Public Sector Action
First: 17.03.2026 07:23 Last: 17.03.2026 07:23 Sources 1

About this happening: CISA added **CVE-2025-47813** in **Wing FTP Server** to the **KEV catalog** after evidence of **active exploitation**, putting the flaw under formal government tracking. The listi...

Open Happening

CISA adds Adobe Experience Manager flaw to KEV catalog

Public Sector Action
First: 16.10.2025 07:26 Last: 16.10.2025 07:26 Sources 1

About this happening: CISA added **CVE-2025-54253** affecting **Adobe Experience Manager** to its **KEV catalog**, turning the flaw into a federal remediation priority because it is under **active expl...

Open Happening

Timeline

  1. 04.06.2026 10:19 1 articles · 2h ago

    Mirasvit releases fixes for CVE-2026-45247

    Mitigation Patch Update

    Patches for Mirasvit Cache Warmer were released on May 25, 2026 for versions prior to 1.11.12, addressing CVE-2026-45247, a deserialization of untrusted data flaw that can allow arbitrary PHP code execution on an affected Magento server.

    Show sources
    Open in new tab
  2. 04.06.2026 10:19 2 articles · 2h ago

    CISA adds CVE-2026-45247 to the KEV catalog after active exploitation

    Exploitation Observed

    CISA added CVE-2026-45247, a CVSS 9.8 deserialization of untrusted data flaw in Mirasvit Cache Warmer for Magento, to the Known Exploited Vulnerabilities catalog after reports of active exploitation in the wild. Imperva also observed malicious HTTP requests carrying serialized PHP object payloads that attempted remote code execution on affected servers.

    Show sources
    Open in new tab
  3. 04.06.2026 10:19 1 articles · 2h ago

    FCEB agencies are ordered to apply the Mirasvit Cache Warmer fixes by June 6

    Legal Policy Action Update

    In response to active exploitation of CVE-2026-45247, Federal Civilian Executive Branch agencies were ordered to apply the Mirasvit Cache Warmer fixes by June 6, 2026. The directive narrows exposure for Magento environments running versions prior to 1.11.12 after the fixes released on May 25, 2026.

    Show sources
    Open in new tab