Code injection

2019-08-0222:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

50.0%

JSON

A cryptographically weak pseudo-rando number generator is used in multiple security relevant contexts in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

CPENameOperatorVersion
magentoge2.1.0
magentolt2.1.18
magentoge2.2.0
magentolt2.2.9
magentoge2.3.0
magentolt2.3.2

Name	Operator	Version
magento	ge	2.1.0
magento	lt	2.1.18
magento	ge	2.2.0
magento	lt	2.2.9
magento	ge	2.3.0
magento	lt	2.3.2

References

magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-33

0.001 Low

EPSS

Percentile

50.0%

JSON

Related for PRION:CVE-2019-7860