Gift Card Generation Invariant Discovery Vulnerability in Magento 2.x

Gift Card Generation Invariant Discovery Vulnerability in Magento 2.x

CVE-2019-7855 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

A cryptograhic flaw in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could be abused by an unauthenticated user to discover an invariant used in gift card generation.

Learn more about our User Device Pen Test.