Drupal Multiple Vulnerabilities
Release Date:
18 Feb 2022
5298
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in Drupal. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure and data manipulation on the targeted system.
Impact
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Drupal 9.3
- Drupal 9.2
- Drupal 7
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- for Drupal 9.3, update to Drupal 9.3.6
- for Drupal 9.2, update to Drupal 9.2.13
- for Drupal 7, update to Drupal 7.88
Versions of Drupal 9 prior to 9.2.x and versions of Drupal 8 are end-of-life and do not receive security coverage.
Vulnerability Identifier
Source
Related Link
Related Tags
Share with