|
210481
|
3.7 |
LOW
Network
|
magento
|
magento
|
When in maintenance mode, Magento version 2.4.0 and 2.3.4 (and earlier) are affected by an information disclosure vulnerability that could expose the installation path during build deployments. This …
|
CWE-22
Path Traversal
|
CVE-2020-24406
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210482
|
4.3 |
MEDIUM
Network
|
magento
|
magento
|
Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions issue vulnerability in the Inventory module. This vulnerability could be abused by authenticated users to modi…
|
NVD-CWE-Other
|
CVE-2020-24405
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210483
|
2.7 |
LOW
Network
|
magento
|
magento
|
Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions vulnerability within the Integrations component. This vulnerability could be abused by users with permissions …
|
NVD-CWE-Other
|
CVE-2020-24404
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210484
|
2.7 |
LOW
Network
|
magento
|
magento
|
Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect user permissions vulnerability within the Inventory component. This vulnerability could be abused by authenticated users w…
|
NVD-CWE-Other
|
CVE-2020-24403
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210485
|
4.9 |
MEDIUM
Network
|
magento
|
magento
|
Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions vulnerability in the Integrations component. This vulnerability could be abused by authenticated users with pe…
|
-
|
CVE-2020-24402
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210486
|
6.5 |
MEDIUM
Network
|
magento
|
magento
|
Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect authorization vulnerability. A user can still access resources provisioned under their old role after an administrator re…
|
-
|
CVE-2020-24401
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210487
|
7.1 |
HIGH
Network
|
magento
|
magento
|
Magento versions 2.4.0 and 2.3.5 (and earlier) are affected by an SQL Injection vulnerability that could lead to sensitive information disclosure. This vulnerability could be exploited by an authenti…
|
-
|
CVE-2020-24400
|
2024-11-21 14:14 |
2020-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210488
|
2.8 |
LOW
Local
|
adobe
|
acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc
|
Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a security feature bypass. While the practical securit…
|
-
|
CVE-2020-24439
|
2024-11-21 14:14 |
2020-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210489
|
3.3 |
LOW
Local
|
adobe
|
acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc
|
Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a use-after-free vulnerability that could result in a memory add…
|
-
|
CVE-2020-24438
|
2024-11-21 14:14 |
2020-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210490
|
7.8 |
HIGH
Local
|
adobe
|
acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc
|
Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a use-after-free vulnerability in the processing of Format event…
|
-
|
CVE-2020-24437
|
2024-11-21 14:14 |
2020-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
