Description
A cryptographic flaw in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9 and Magento 2.3 prior to 2.3.2 resulted in storage of sensitive information with an algorithm that is insufficiently resistant to brute force attacks.
Remediation
References
Related Vulnerabilities
OpenSSL Use After Free Vulnerability (CVE-2023-0215)
WordPress Plugin Bilingual Linker Cross-Site Scripting (2.1.1)
WordPress Plugin MStore API-Create Native Android & iOS Apps On The Cloud Security Bypass (4.10.7)
Payara URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-41699)
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2008-1672)