Lucene search
AdobeCVELIST:CVE-2019-8108HistoryNov 05, 2019 - 10:13 p.m.
CVE-2019-8108
2019-11-0522:13:29
adobe
www.cve.org
1
Insecure authentication and session management vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can manipulate session validation setting for a storefront that leads to insecure authentication and session management.
CNA Affected
[
{
"product": "Magento 2",
"vendor": "Adobe Systems Incorporated",
"versions": [
{
"status": "affected",
"version": "Magento 2.2 prior to 2.2.10"
},
{
"status": "affected",
"version": "Magento 2.3 prior to 2.3.3 or 2.3.2-p1"
}
]
}
]Related
osv
osv
CVE-2019-8108
2019-11-05 23:15:11
github
github
Magento Broken authentication and session managememt
2022-05-24 17:00:24
nvd
nvd
CVE-2019-8108
2019-11-05 23:15:11
friendsofphp
friendsofphp
PRODSECBUG-2478: Broken authentication and session managememt
2019-10-08 00:00:00
veracode
veracode
Insecure Authentication And Session Management
2024-06-20 09:02:10
prion
prion
Authentication flaw
2019-11-05 23:15:00
cve
cve
CVE-2019-8108
2019-11-05 23:15:11
openvas
openvas