Security Advisories - PKSA-ngw6-6q5w-v2rf - Packagist

PKSA-ngw6-6q5w-v2rf Security Advisory

[HIGH] Magento does not properly restrict excessive authentication attempts

PKSA-ngw6-6q5w-v2rf CVE-2024-39398 GHSA-q628-54wg-4r5q

Affected package: magento/community-edition

Affected version: =2.4.4|=2.4.5|=2.4.6|=2.4.7|>=2.4.4-p1,<2.4.4-p10|>=2.4.5-p1,<2.4.5-p9|>=2.4.6-p1,<2.4.6-p7|>=2.4.7-beta1,<2.4.7-p2

Reported by:
GitHub