Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Magento Violation of Secure Design Principles Vulnerability - CVE-2021-28583 - Vulnerability Database
Magento

Magento Violation of Secure Design Principles Vulnerability - CVE-2021-28583

Medium
Reference: CVE-2021-28583
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-28583
Title: Magento Violation of Secure Design Principles Vulnerability
Overview:

Magento versions 2.4.2 (and earlier) 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are affected by a Violation of Secure Design Principles vulnerability in RMA PDF filename formats. Successful exploitation could allow an attacker to get unauthorized access to restricted resources.