Magento has released a security patch that fixes a Zend Framework vulnerability in the following versions of Magento:
- Enterprise Edition 18.104.22.168-22.214.171.124: SUPEE-9652 or upgrade to Enterprise Edition 126.96.36.199
- Community Edition 188.8.131.52-184.108.40.206: SUPEE-9652 or upgrade to Community Edition 220.127.116.11
The Zend Framework vulnerability is a critical issue as it can potentially allow Remote Code execution that involves the use of the sendmail() function as a mail transport agent.
If you are a current Neoverve customer, our team will be contacting you shortly about applying the recent security patch to your sites.
For more information regarding the SUPEE-9652 Zend Vulnerability patch: