Skip to main content

Drupal Remote Code Execution Vulnerability

Last Update Date: 22 Feb 2019 10:39 Release Date: 22 Feb 2019 4252 Views

RISK: Medium Risk

TYPE: Servers - Internet App Servers

TYPE: Internet App Servers

A vulnerability was identified in Drupal, a remote user could exploit this vulnerability to trigger remote code execution on the targeted system.


Impact

  • Remote Code Execution

System / Technologies affected

  • Versions prior to Drupal: 8.6.x
  • Versions prior to Drupal: 8.5.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to Drupal: 8.6.10
  • Update to Drupal: 8.5.11

Vulnerability Identifier


Source


Related Link