CVE-2020-15244

Summary

In Magento (rubygems openmage/magento-lts package) before versions 19.4.8 and 20.0.4, an admin user can generate soap credentials that can be used to trigger RCE via PHP Object Injection through product attributes and a product. The issue is patched in versions 19.4.8 and 20.0.4.

Affected Software

VendorProductVersion RangeStatus
OpenMagemagento-lts< 19.4.8affected
OpenMagemagento-lts>= 20.0.0, < 20.0.4affected

Weaknesses

  • CWE-502: CWE-502 Deserialization of Untrusted Data
  • CWE-74: CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

ADP Enrichment

CVE Program Container

Additional References

References