HKCert
  

Drupal Security Restriction Bypass Vulnerability

Release Date: 18 / 07 / 2019
Last Update: 18 / 07 / 2019
Risk Level:  


A vulnerability was identified in Drupal, a remote attacker could exploit this vulnerability to bypass security restriction on the targeted system.

  • Security Restriction Bypass

 

  • Drupal 8.7.4 with enabled experimental Workspaces module

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

 

  • Drupal 8.7.5

Please refer to the link below for detail

https://www.drupal.org/sa-core-2019-008