← Back to CVE List

CVE-2019-7849

Published: 2019-08-02T22:15Z
Last Modified: 2024-11-21T04:48Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A defense-in-depth check was added to mitigate inadequate session validation handling by 3rd party checkout modules. This impacts Magento 1.x prior to 1.9.4.2, Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9 and Magento 2.3 prior to 2.3.2. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt