PRODSECBUG-2197: Admin credentials are logged in exception reports

Exception error reports capture administrative credentials in clear text format

Type: Information Disclousure

CVSSv3 Severity: 3.9

Known Attacks: none

Product(s) Affected: Magento Open Source prior to, and Magento Commerce prior to, Magento 2.1 prior to 2.1.17, Magento 2.2 prior to 2.2.8, Magento 2.3 prior to 2.3.1

Fixed In: Magento Open Source, Magento Commerce, SUPEE-11086, Magento 2.1.17, Magento 2.2.8, Magento 2.3.1

Posted in Information Disclosure, Magento 1, Magento 2, Magento Commerce, Magento Open Source