2 matches found
CVE-2019-7928
A denial-of-service DoS vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. By abusing insufficient brute-forcing defenses in the token exchange protocol, an unauthenticated attacker could disrupt transactions between the Magento merchant a...
CVE-2019-7928
CVE-2019-7928 is a DoS vulnerability in Magento with affected versions: 2.1 before 2.1.18, 2.2 before 2.2.9, and 2.3 before 2.3.2. The issue arises from abusing insufficient brute-forcing defenses in the token exchange with PayPal, allowing an unauthenticated attacker to disrupt transactions betw...