Share:

CVE-2019-8118 - Magento Magento

November 6, 2019

Moderate 5.3

Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 uses weak cryptographic function to store the failed login attempts for customer accounts.

Affected software

Magento Magento

Reference links

https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.