7.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2019-7950

GHSA ID

GHSA-2fhr-f6q6-c4p2

EPSS Score

0.64368%

CWE

CWE-639

Published

5/24/2022

Updated

2/2/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2019-7950

CVE-2019-7950: Magento 2 Community Edition Access Control Bypass

An access control bypass vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An unauthenticated user can bypass access controls via REST API calls to assign themselves to an arbitrary company, thereby gaining read access to potentially confidental information.

(GitHub Advisory)

7.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2019-7950

GHSA ID

GHSA-2fhr-f6q6-c4p2

EPSS Score

0.64368%

CWE

CWE-639

Published

5/24/2022

Updated

2/2/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
magento/community-edition	composer	>= 2.1.0, < 2.1.18	2.1.18
magento/community-edition	composer	>= 2.2.0, < 2.2.9	2.2.9
magento/community-edition	composer	>= 2.3.0, < 2.3.2	2.3.2

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability involves unauthenticated REST API calls manipulating company assignments. The primary entry point would be the REST controller handling customer/company assignment requests (Assign::execute), which lacked authentication enforcement. The business logic method (CompanyAssignment::assignCustomerToCompany) would then process the user-controlled company ID without proper authorization checks, enabling the bypass. This matches CWE-639's pattern of authorization bypass through user-controlled keys (company IDs in this case).

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*n ****ss *ontrol *yp*ss vuln*r**ility *xists in M***nto *.* prior to *.*.**, M***nto *.* prior to *.*.*, M***nto *.* prior to *.*.*. *n un*ut**nti**t** us*r **n *yp*ss ****ss *ontrols vi* R*ST *PI **lls to *ssi*n t**ms*lv*s to *n *r*itr*ry *omp*ny,

Reasoning

T** vuln*r**ility involv*s un*ut**nti**t** R*ST *PI **lls m*nipul*tin* *omp*ny *ssi*nm*nts. T** prim*ry *ntry point woul* ** t** R*ST *ontroll*r **n*lin* *ustom*r/*omp*ny *ssi*nm*nt r*qu*sts (`*ssi*n::*x**ut*`), w*i** l**k** *ut**nti**tion *n*or**m*n

7.5

Basic Information

Concerned about an active attack path?

CVE-2019-7950: Magento 2 Community Edition Access Control Bypass

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI