Shopware is an open source eCommerce platform. Versions prior to 5.6.10 are vulnerable to system information leakage in error handling. Users are recommend to update to version 5.6.10. You can get the update to 5.6.10 regularly via the Auto-Updater or directly via the download overview.
References
Link | Resource |
---|---|
https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2021 | Vendor Advisory |
https://github.com/shopware/shopware/commit/dcb24eb5ec757c991b5a4e2ddced379e5820744d | Patch Third Party Advisory |
https://github.com/shopware/shopware/security/advisories/GHSA-9vxv-wpv4-f52p | Third Party Advisory |
Configurations
History
02 Jul 2022, 19:56
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-209 |
01 Jul 2021, 19:51
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:shopware:shopware:*:*:*:*:*:*:*:* | |
References | (MISC) https://docs.shopware.com/en/shopware-5-en/security-updates/security-update-05-2021 - Vendor Advisory | |
References | (MISC) https://github.com/shopware/shopware/commit/dcb24eb5ec757c991b5a4e2ddced379e5820744d - Patch, Third Party Advisory | |
References | (CONFIRM) https://github.com/shopware/shopware/security/advisories/GHSA-9vxv-wpv4-f52p - Third Party Advisory | |
CWE | CWE-200 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
24 Jun 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-06-24 21:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-32712
Mitre link : CVE-2021-32712
CVE.ORG link : CVE-2021-32712
JSON object : View
Products Affected
shopware
- shopware