{"containers":{"cna":{"affected":[{"product":"Magento 2","vendor":"Adobe Systems Incorporated","versions":[{"status":"affected","version":"Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p2"}]}],"descriptions":[{"lang":"en","value":"An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users can manipulate the design layout update feature."}],"problemTypes":[{"descriptions":[{"description":"Arbitrary File Deletion","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2019-11-05T21:53:32.000Z","orgId":"078d4453-3bcd-4900-85e6-15281da43538","shortName":"adobe"},"references":[{"tags":["x_refsource_MISC"],"url":"https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"psirt@adobe.com","ID":"CVE-2019-8090","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Magento 2","version":{"version_data":[{"version_value":"Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p2"}]}}]},"vendor_name":"Adobe Systems Incorporated"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users can manipulate the design layout update feature."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Arbitrary File Deletion"}]}]},"references":{"reference_data":[{"name":"https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update","refsource":"MISC","url":"https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T21:10:32.544Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update"}]}]},"cveMetadata":{"assignerOrgId":"078d4453-3bcd-4900-85e6-15281da43538","assignerShortName":"adobe","cveId":"CVE-2019-8090","datePublished":"2019-11-05T21:53:32.000Z","dateReserved":"2019-02-12T00:00:00.000Z","dateUpdated":"2024-08-04T21:10:32.544Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}