Magento 2.3.4 was released this week with patches for six vulnerabilities, including three that are considered critical.
The first of these severe security issues is related to deserialization of untrusted data. Tracked as CVE-2020-3716, the bug could lead to arbitrary code execution.
Advertise on IT Security News.
Read the complete article: Magento 2.3.4 Patches Critical Code Execution Vulnerabilities