7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-9591

GHSA ID

GHSA-w7rh-9w5v-rwqj

EPSS Score

0.79095%

CWE

CWE-200

Published

5/24/2022

Updated

1/11/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2020-9591

CVE-2020-9591: Magento defense-in-depth security mitigation vulnerability

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a defense-in-depth security mitigation vulnerability. Successful exploitation could lead to unauthorized access to admin panel.

(GitHub Advisory)

7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-9591

GHSA ID

GHSA-w7rh-9w5v-rwqj

EPSS Score

0.79095%

CWE

CWE-200

Published

5/24/2022

Updated

1/11/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
magento/community-edition	composer	>= 2.3.0, < 2.3.4-p2	2.3.4-p2
magento/community-edition	composer	<= 2.2.11
magento/core	composer	< 1.9.4.5	1.9.4.5

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability relates to defense-in-depth failures in admin panel access control. CWE-200 (sensitive information exposure) suggests authentication/authorization bypass vectors.

_processUrlKeys is critical for validating secret keys in admin URLs. A flawed implementation could allow attackers to bypass the secret key requirement (a defense-in-depth layer).
The authentication plugin's aroundDispatch method is central to admin session validation. While the high-confidence entry focuses on the URL key validation (directly tied to the 'defense-in-depth' description), the session validation mechanism is a secondary candidate given the unauthorized access impact.

These conclusions align with Magento's security architecture and the vulnerability's nature, though exact patch details are unavailable for full confirmation.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

M***nto v*rsions *.*.* *n* **rli*r, *.*.** *n* **rli*r (s** not*), *.**.*.* *n* **rli*r, *n* *.*.*.* *n* **rli*r **v* * ****ns*-in-**pt* s**urity miti**tion vuln*r**ility. Su***ss*ul *xploit*tion *oul* l*** to un*ut*oriz** ****ss to **min p*n*l.

Reasoning

T** vuln*r**ility r*l*t*s to ****ns*-in-**pt* **ilur*s in **min p*n*l ****ss *ontrol. *W*-*** (s*nsitiv* in*orm*tion *xposur*) su***sts *ut**nti**tion/*ut*oriz*tion *yp*ss v**tors. *. _pro**ssUrlK*ys is *riti**l *or v*li**tin* s**r*t k*ys in **min

7.5

Basic Information

Concerned about an active attack path?

CVE-2020-9591: Magento defense-in-depth security mitigation vulnerability

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI