Lucene search

CVE-2020-24407

🗓️ 09 Nov 2020 01:12:15Reported by [email protected]Type

Magento versions 2.4.0 and 2.3.5p1 are affected by an unsafe file upload vulnerability

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 132
OSV	CVE-2020-24407	9 Nov 202001:15	–	osv
OSV	Magento 2 Community Edition RCE via Unsafe File Upload	24 May 202217:33	–	osv
OSV	BIT-magento-2020-24407	6 Mar 202411:07	–	osv
Cvelist	CVE-2020-24407 Arbitrary code execution via file import functionality	9 Nov 202000:39	–	cvelist
0day.today	Magento 2.4.0 / 2.3.5p1 (and earlier) Arbitrary Code Execution 0day Exploit	24 Mar 202100:00	–	zdt
Prion	Remote code execution	9 Nov 202001:15	–	prion
Github Security Blog	Magento 2 Community Edition RCE via Unsafe File Upload	24 May 202217:33	–	github
CVE	CVE-2020-24407	9 Nov 202001:15	–	cve
ThreatPost	Top 10 Breaches and Leaky Server Screw Ups of 2019	26 Dec 201914:00	–	threatpost
ThreatPost	Akamai Talks Massive Uptick in Credential-Stuffing Attacks Against Bank APIs	12 Mar 202013:57	–	threatpost

Nvd

Node

magento magentoRange<2.3.5commerce

magento magentoRange<2.3.5open_source

magento magentoMatch2.3.5-commerce

magento magentoMatch2.3.5-open_source

magento magentoMatch2.3.5p1commerce

magento magentoMatch2.3.5p1open_source

magento magentoMatch2.4.0commerce

magento magentoMatch2.4.0open_source

Source	Link
helpx	www.helpx.adobe.com/security/products/magento/apsb20-59.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Nov 2020 01:15Current

9.1High risk

Vulners AI Score9.1

CVSS29

CVSS39.1

EPSS0.02087

CWE-434