Magento Improper Privilege Management Vulnerability - CVE-2020-9630 - Vulnerability Database

Magento Improper Privilege Management Vulnerability - CVE-2020-9630

Critical

Reference: CVE-2020-9630

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-9630

Title: Magento Improper Privilege Management Vulnerability

Overview:

Magento versions 2.3.4 and earlier 2.2.11 and earlier (see note) 1.14.4.4 and earlier and 1.9.4.4 and earlier have a business logic error vulnerability. Successful exploitation could lead to privilege escalation.