CVE-2019-8125 – A remote code execution vulnerability exists in Magento 1 prior to 1.9.x and 1.14.x. An au …

Vuln ID: CVE-2019-8125

Published:  2019-11-05  23:15:12Z

Description: A remote code execution vulnerability exists in Magento 1 prior to 1.9.x and 1.14.x. An authenticated admin user can modify configuration parameters via crafted support configuration. The modification can lead to remote code execution.

Source: NVD.NIST.GOV

 

Tags