Global infos:

An unrestricted file upload vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated admin user can manipulate the Synchronization feature in the Media File Storage of the database to transform uploaded JPEG file into a PHP file.

CVE Status: Modified

References:

[email protected]

af854a3a-2127-422b-91ae-364da2661108

Metrics:

Attribute	Value
Attack Complexity	LOW
Attack Vector	NETWORK
Availability Impact	NONE
Base Score	4.9
Base Severity	MEDIUM
Confidentiality Impact	NONE
Integrity Impact	HIGH
Privileges Required	HIGH
Scope	UNCHANGED
User Interaction	NONE
Vector String	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Exploitability Score	1.2
Impact Score	3.6
Source	[email protected]
Type	Primary

Links:

Exploit-db
Github