Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions issue vulnerability in the Inventory module. This vulnerability could be abused by authenticated users to modify inventory stock data without authorization.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/magento/apsb20-59.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Oct 2022, 18:57
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
Information
Published : 2020-11-09 01:15
Updated : 2024-02-04 21:23
NVD link : CVE-2020-24405
Mitre link : CVE-2020-24405
CVE.ORG link : CVE-2020-24405
JSON object : View
Products Affected
magento
- magento
CWE