CVE-2019-7904

Publication date

2019-08-02 21:25:26

Family

adobe

State

PUBLISHED

Description

Insufficient enforcement of user access controls in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could enable a low-privileged user to make unauthorized environment configuration changes.