Magento Improper Privilege Management Vulnerability - CVE-2020-9630
Magento versions 2.3.4 and earlier 2.2.11 and earlier (see note) 1.14.4.4 and earlier and 1.9.4.4 and earlier have a business logic error vulnerability. Successful exploitation could lead to privilege escalation.