Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability in the Multishipping Module. An authenticated attacker could leverage this vulnerability to achieve sensitive information disclosure.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/magento/apsb21-64.html | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: adobe
Published: 2021-08-10T00:00:00
Updated: 2021-09-01T14:29:34
Reserved: 2021-06-30T00:00:00
Link: CVE-2021-36038
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-09-01T15:15:09.977
Modified: 2021-09-08T17:07:55.807
Link: CVE-2021-36038
JSON object: View
Redhat Information
No data.
CWE