CVE-2019-7904
CVE-2019-7904 affects Magento versions prior to 2.1.18, 2.2 prior to 2.2.9, and 2.3 prior to 2.3.2, where a low-privileged user could make unauthorized environment configuration changes due to insufficient enforcement of user access controls. Public references indicate a security update exists: M...