CVE-2020-9664

Summary

Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a php object injection vulnerability. Successful exploitation could lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AdobeMagento1.14.4.5 and earlier, and 1.9.4.5 and earlier versionsaffected

Weaknesses

  • PHP Object Injection

ADP Enrichment

CVE Program Container

Additional References

References