Moderate severityNVD Advisory· Published Feb 14, 2020· Updated Aug 5, 2024
CVE-2019-20455
CVE-2019-20455
Description
Gateways/Gateway.php in Heartland & Global Payments PHP SDK before 2.0.0 does not enforce SSL certificate validations.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
globalpayments/php-sdkPackagist | < 2.0.0 | 2.0.0 |
Affected products
2- Heartland & Global Payments/PHP SDKdescription
Patches
Vulnerability mechanics
References
8- github.com/advisories/GHSA-pm77-c4q7-3fwjghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-20455ghsaADVISORY
- github.com/globalpayments/php-sdk/compare/1.3.3...2.0.0ghsax_refsource_MISCWEB
- github.com/globalpayments/php-sdk/pull/8ghsax_refsource_MISCWEB
- github.com/globalpayments/php-sdk/pull/8/commits/c86e18f28c5eba0d6ede7d557756d978ea83d3c9ghsaWEB
- github.com/globalpayments/php-sdk/releases/tag/2.0.0ghsax_refsource_MISCWEB
- winterdragon.ca/global-payments-vulnerabilityghsaWEB
- winterdragon.ca/global-payments-vulnerability/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.