A defense-in-depth check was added to mitigate inadequate session validation handling by 3rd party checkout modules. This impacts Magento 1.x before 1.9.4.2, Magento Commerce before 1.14.4.2, Magento 2.1 before 2.1.18, Magento 2.2 before 2.2.9 and Magento 2.3 before 2.3.2.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
magento magento |