FreeBSD : drupal -- Drupal Core - Multiple Vulnerabilities (473b6a9e-8493-11e7-b24b-6cf0497db129)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Drupal Security Team :

CVE-2017-6923: Views - Access Bypass - Moderately Critical

CVE-2017-6924: REST API can bypass comment approval - Access Bypass -
Moderately Critica

CVE-2017-6925: Entity access bypass for entities that do not have
UUIDs or have protected revisions - Access Bypass - Critical

See also :

http://www.nessus.org/u?930c543c

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 102615 ()

Bugtraq ID:

CVE ID: CVE-2017-6923
CVE-2017-6924
CVE-2017-6925

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now