CVE-2020-9664
published 2020-07-22CVE-2020-9664: Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a php object injection vulnerability. Successful exploitation could lead to arbitrary code…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a php object injection vulnerability. Successful exploitation could lead to arbitrary code execution.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | magento | — | — |
| magento | core | 0 – 1.9.4.5 | — |
| magento | magento | <= 1.9.4.5 | — |
| magento | magento | <= 1.14.4.5 | — |