Количество 2
Количество 2
CVE-2019-8114
A remote code execution vulnerability exists in Magento 1 prior to 1.9.4.3 and 1.14.4.3, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user with admin privileges to import features can execute arbitrary code via crafted configuration archive file upload.
GHSA-crv7-r357-gw3w
Magento 2 Community Edition RCE Vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-8114 A remote code execution vulnerability exists in Magento 1 prior to 1.9.4.3 and 1.14.4.3, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user with admin privileges to import features can execute arbitrary code via crafted configuration archive file upload. | CVSS3: 7.2 | 1% Низкий | больше 6 лет назад |
| GHSA-crv7-r357-gw3w Magento 2 Community Edition RCE Vulnerability | CVSS3: 7.2 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу