You are viewing this page in an unauthorized frame window.
This is a potential security issue, you are being redirected to
https://nvd.nist.gov
An official website of the United States government
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock () or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
OR
*cpe:2.3:a:magento:magento:*:*:*:*:commerce:*:*:* versions from (including) 2.1.0 up to (excluding) 2.1.17
*cpe:2.3:a:magento:magento:*:*:*:*:open_source:*:*:* versions from (including) 2.1.0 up to (excluding) 2.1.17
*cpe:2.3:a:magento:magento:*:*:*:*:commerce:*:*:* versions from (including) 2.2.0 up to (excluding) 2.2.8
*cpe:2.3:a:magento:magento:*:*:*:*:open_source:*:*:* versions from (including) 2.2.0 up to (excluding) 2.2.8
*cpe:2.3:a:magento:magento:*:*:*:*:commerce:*:*:* versions from (including) 2.3.0 up to (excluding) 2.3.1
*cpe:2.3:a:magento:magento:*:*:*:*:open_source:*:*:* versions from (including) 2.3.0 up to (excluding) 2.3.1
Added
CVSS V2
NIST (AV:N/AC:L/Au:S/C:P/I:N/A:N)
Added
CVSS V3.1
NIST AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Added
CWE
NIST CWE-20
Changed
Reference Type
https://magento.com/security/patches/magento-2.3.1-2.2.8-and-2.1.17-security-update No Types Assigned