CVE-2020-9585

Summary

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a defense-in-depth security mitigation vulnerability. Successful exploitation could lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AdobeMagento2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier versionsaffected

Weaknesses

  • Defense-in-depth security mitigation

ADP Enrichment

CVE Program Container

Additional References

References