Adobe: >> Magento Commerce >> 2.4.0 Security Vulnerabilities
Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an insecure direct object vulnerability (IDOR) in the checkout module. Successful exploitation could lead to sensitive information disclosure.
CVSS Score
5.3
EPSS Score
0.006
Published
2021-01-13