[MEDIUM] Magento Open Source allows Incorrect Authorization

PKSA-vm1g-2hpb-m5y8 CVE-2023-38209 GHSA-3vg2-v639-6ch9

Affected package: magento/community-edition

Affected version: >=2.4.4-p1,<2.4.4-p5|>=2.4.5-p1,<2.4.5-p4|=2.4.6-p1|=2.4.4|=2.4.5|=2.4.6

Reported by:
GitHub