CVE-2020-9690

State: PUBLISHED · Published: 2020-07-29 · Updated: 2024-08-04 · Assigner: adobe

Description

Magento versions 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier have an observable timing discrepancy vulnerability. Successful exploitation could lead to signature verification bypass.

CWE

(none)

Affected

Adobe / Magento — v=2.3.5-p1 and earlier, and 2.3.5-p1 and earlier versions [affected]

CVSS

(none)

References

https://helpx.adobe.com/security/products/magento/apsb20-47.html x_refsource_CONFIRM

Source

cvelistV5-main/cves/2020/9xxx/CVE-2020-9690.json