Magento has released a security patch that fixes a Zend Framework vulnerability in the following versions of Magento:
- Enterprise Edition 220.127.116.11-18.104.22.168: SUPEE-9652 or upgrade to Enterprise Edition 22.214.171.124
- Community Edition 126.96.36.199-188.8.131.52: SUPEE-9652 or upgrade to Community Edition 184.108.40.206
The Zend Framework vulnerability is a critical issue as it can potentially allow Remote Code execution that involves the use of the sendmail() function as a mail transport agent.
If you are a current Neoverve customer, our team will be contacting you shortly about applying the recent security patch to your sites.
For more information regarding the SUPEE-9652 Zend Vulnerability patch: