[HIGH] Unauthenticated crypto and weak IV in Magento\Framework\Encryption

PKSA-4kzn-6ry6-q5bh CVE-2016-6485 GHSA-h7qw-mxrm-c6h2

Affected package: magento/community-edition

Affected version: >=2.0,<2.2.6

Reported by:
GitHub