Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have an authorization bypass vulnerability. Successful exploitation could lead to potentially unauthorized product discounts.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2020-06-26T20:19:07
Updated: 2024-08-04T10:34:39.469Z
Reserved: 2020-03-02T00:00:00
Link: CVE-2020-9587
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-06-26T21:15:17.263
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-9587
Redhat
No data.