6.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
38.5%
A cryptograhic flaw in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could be abused by an unauthenticated user to discover an invariant used in gift card generation.
magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23