VYPR
Moderate severityNVD Advisory· Published Jun 14, 2021· Updated Aug 3, 2024

Missing Handler in @scandipwa/magento-scripts

CVE-2021-32684

Description

magento-scripts contains scripts and configuration used by Create Magento App, a zero-configuration tool-chain which allows one to deploy Magento 2. In versions 1.5.1 and 1.5.2, after changing the function from synchronous to asynchronous there wasn't implemented handler in the start, stop, exec, and logs commands, effectively making them unusable. Version 1.5.3 contains patches for the problems.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
@scandipwa/magento-scriptsnpm
>= 1.5.1, < 1.5.31.5.3

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.