6.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
50.0%
A cryptographic flaw in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9 and Magento 2.3 prior to 2.3.2 resulted in storage of sensitive information with an algorithm that is insufficiently resistant to brute force attacks.
magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23