CVE-2020-24403

🗓️ 09 Nov 2020 01:12:15Reported by [email protected]Type

Magento versions 2.4.0 and 2.3.5p1 affected by user permissions vulnerability in Inventory componen

Reporter	Title	Published	Views	Family All 10
OSV	CVE-2020-24403	9 Nov 202001:15	–	osv
OSV	Magento incorrect user permissions vulnerability within the Inventory component	24 May 202217:33	–	osv
OSV	BIT-magento-2020-24403	6 Mar 202411:08	–	osv
CVE	CVE-2020-24403	9 Nov 202001:15	–	cve
Github Security Blog	Magento incorrect user permissions vulnerability within the Inventory component	24 May 202217:33	–	github
Cvelist	CVE-2020-24403 Incorrect permissions could lead to unauthorized modification of inventory source data via REST API	9 Nov 202000:39	–	cvelist
Prion	Spoofing	9 Nov 202001:15	–	prion
ThreatPost	Critical Magento Holes Open Online Shops to Code Execution	15 Oct 202020:59	–	threatpost
Adobe	APSB20-59 Security updates available for Magento	15 Oct 202000:00	–	adobe
OpenVAS	Magento < 2.3.6, 2.4.x < 2.4.1 Multiple Vulnerabilities (APSB20-59)	23 Oct 202000:00	–	openvas

Nvd

Node

magento magentoRange<2.3.5commerce

magento magentoRange<2.3.5open_source

magento magentoMatch2.3.5-commerce

magento magentoMatch2.3.5-open_source

magento magentoMatch2.3.5p1commerce

magento magentoMatch2.3.5p1open_source

magento magentoMatch2.4.0commerce

magento magentoMatch2.4.0open_source

Source	Link
helpx	www.helpx.adobe.com/security/products/magento/apsb20-59.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Nov 2020 01:15Current

2.4Low risk

Vulners AI Score2.4

CVSS24

CVSS32.7

EPSS0.0009

CWE-285