Magento has released a security patch that fixes a Zend Framework vulnerability in the following versions of Magento:
- Enterprise Edition 184.108.40.206-220.127.116.11: SUPEE-9652 or upgrade to Enterprise Edition 18.104.22.168
- Community Edition 22.214.171.124-126.96.36.199: SUPEE-9652 or upgrade to Community Edition 188.8.131.52
The Zend Framework vulnerability is a critical issue as it can potentially allow Remote Code execution that involves the use of the sendmail() function as a mail transport agent.
If you are a current Neoverve customer, our team will be contacting you shortly about applying the recent security patch to your sites.
For more information regarding the SUPEE-9652 Zend Vulnerability patch: