Drupal Update
2241Warning Date
Severity Level
Warning Number
Target Sector
18 June, 2020
● High
2020-1363
All
Description:
Drupal has released security update to address multiple vulnerabilities in the following versions:
- Drupal 8.8.x
- Drupal 8.9.x
- Drupal 9.0.x
- Drupal 8 prior to 8.8.x are end-of-life and do not receive security coverage
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Authentication bypass
Best practice and Recommendations:
The CERT team encourages users to review Drupal security advisory and apply the necessary updates: