2 matches found
CVE-2021-28583 Magento Commerce insecure storage of sensitive documentation
Magento versions 2.4.2 and earlier, 2.4.1-p1 and earlier and 2.3.6-p1 and earlier are affected by a Violation of Secure Design Principles vulnerability in RMA PDF filename formats. Successful exploitation could allow an attacker to get unauthorized access to restricted resources...
CVE-2021-28583
Summary of confirmed details: CVE-2021-28583 affects Magento products including Magento Commerce/Open Source versions 2.4.2 and earlier, 2.4.1-p1 and earlier, and 2.3.6-p1 and earlier. The vulnerability is described as a Violation of Secure Design Principles related to RMA PDF filename formats, w...