Security Advisory

CVE-2020-24407

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-09 00:39:56

Last updated 2024-09-16 20:16:25

Assigner adobe

State PUBLISHED

Description

Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated users with administrative permissions to the System/Data and Transfer/Import components.

← Browse all CVEs View on cve.org ↗