Security Advisory

CVE-2019-7139

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-10 17:07:20

Last updated 2024-08-04 20:38:33

Assigner adobe

State PUBLISHED

Description

An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

← Browse all CVEs View on cve.org ↗