A cryptographic flaw in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9 and Magento 2.3 prior to 2.3.2 resulted in storage of sensitive information with an algorithm that is insufficiently resistant to brute force attacks.
References
Link | Resource |
---|---|
https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-08-02 15:15
Updated : 2021-07-21 04:39
NVD link : CVE-2019-7858
Mitre link : CVE-2019-7858
JSON object : View
CWE
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
Products Affected
magento
- magento