CVE-2020-9591

Information Exposure in packagist/magento/community-edition

Identifiers

CVE-2020-9591

Package Slug

packagist/magento/community-edition

Vulnerability

Information Exposure

Description

Magento has a defense-in-depth security mitigation vulnerability. Successful exploitation could lead to unauthorized access to admin panel.

Affected Versions

All versions up to 1.9.4.4, all versions starting from 2.2.0 up to 2.2.11, all versions starting from 2.3.0 up to 2.3.4

Solution

Upgrade to versions 2.0.0, 2.3.5 or above.

Last Modified

2020-07-02

source