Magento Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2020-9689 - Vulnerability Database

Magento

Magento Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2020-9689

Medium

Reference: CVE-2020-9689

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-9689

Title: Magento Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability

Overview:

Magento versions 2.3.5-p1 and earlier and 2.3.5-p1 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution.