CVE-2020-15244 HIGH

CVE-2020-15244: RCE in Magento

Vendor Openmage

Product magento-lts

Weakness CWE-502 · Unsafe deserialization

Published October 21, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

8.0/10

Attack vector Network

Attack complexity High

Privileges required High

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

Description

In Magento (rubygems openmage/magento-lts package) before versions 19.4.8 and 20.0.4, an admin user can generate soap credentials that can be used to trigger RCE via PHP Object Injection through product attributes and a product. The issue is patched in versions 19.4.8 and 20.0.4.

Key dates

Disclosure timeline

October 21, 2020 CVE published

August 4, 2024 Record updated

Identifiers

CVE CVE-2020-15244

CWE CWE-502

CVSS 8.0 / HIGH

Affected versions

Vendor Openmage

Product magento-lts

Affected < 19.4.8

Vendor Openmage

Product magento-lts

Affected >= 20.0.0, < 20.0.4