CVE-2019-7854

An insecure direct object reference (IDOR) vulnerability in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 can lead to unauthorized disclosure of company credit history details.
Configurations

Configuration 1

cpe:2.3:a:magento:magento:*:*:*:*:open_source:*:*:*
cpe:2.3:a:magento:magento:*:*:*:*:open_source:*:*:*
cpe:2.3:a:magento:magento:*:*:*:*:open_source:*:*:*

Information

Published : 2019-08-02 10:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-7854

Mitre link : CVE-2019-7854

Products Affected
No products.
CWE