Drupal 8.2.x < 8.5.3 Remote Code Execution Vulnerability

Critical Web Application Scanning Plugin ID 98576

Synopsis

Description

According to its self-reported version number, the detected Drupal application is affected by a remote code execution vulnerability.

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update to Drupal version 8.5.3 or latest.

Drupal 8.2.x < 8.5.3 Remote Code Execution Vulnerability

Synopsis

Description

Solution

See Also

Plugin Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerability Information

Reference Information