Описание
OpenMage LTS is an e-commerce platform. Versions prior to 19.4.22 and 20.0.19 contain an infinite loop in malicious code filter in certain conditions. Versions 19.4.22 and 20.0.19 have a fix for this issue. There are no known workarounds.
Ссылки
- PatchThird Party Advisory
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- Release NotesThird Party Advisory
- Release NotesThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 19.4.22 (исключая)Версия от 20.0.0 (включая) до 20.0.19 (исключая)
Одно из
cpe:2.3:a:openmage:magento:*:*:*:*:lts:*:*:*
cpe:2.3:a:openmage:magento:*:*:*:*:lts:*:*:*
EPSS
Процентиль: 42%
0.00195
Низкий
4.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-835
Связанные уязвимости
EPSS
Процентиль: 42%
0.00195
Низкий
4.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-835