CVE-2021-28583
Magento Commerce insecure storage of sensitive documentation
In short
Magento stores RMA (Return Merchandise Authorization) PDF files with insecure naming that allows attackers to guess and access confidential return documentation they shouldn't see. This exposes sensitive customer and business information to unauthorized parties.
Technical detail
The vulnerability exists in RMA PDF filename generation across Magento 2.4.2, 2.4.1-p1, and 2.3.6-p1, where predictable naming patterns violate secure design principles (CWE-657). An unauthenticated attacker can enumerate or brute-force filenames to access restricted RMA documents, bypassing intended access controls and gaining unauthorized access to sensitive return data.
Summary generated and translated by AI from the official description.
Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are affected by a Violation of Secure Design Principles vulnerability in RMA PDF filename formats. Successful exploitation could allow an attacker to get unauthorized access to restricted resources.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
Adobe · Magento CommerceWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →