Cryptographically Weak Pseudo-Random Number Generator Vulnerability in Magento 2.x

Cryptographically Weak Pseudo-Random Number Generator Vulnerability in Magento 2.x

CVE-2019-7860 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

A cryptographically weak pseudo-rando number generator is used in multiple security relevant contexts in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

Learn more about our Web Application Penetration Testing UK.