[HIGH] Unauthenticated crypto and weak IV in Magento\Framework\Encryption

PKSA-whwg-zcv6-qs4x CVE-2016-6485 GHSA-h7qw-mxrm-c6h2

Affected package: magento/project-community-edition

Affected version: >=2.0,<=2.0.2

Reported by:
GitHub