Synology-SA-19:43 Drupal

Publish Time: 2019-12-23 13:27:15 UTC+8

Last Updated: 2020-03-30 17:02:55 UTC+8

Severity
Moderate
Status
Ongoing

Abstract

A vulnerability allows remote authenticated users to upload arbitrary files via a susceptible version of Drupal.

Affected Products

Product Severity Fixed Release Availability
Drupal 8 Moderate Upgrade to 8.8.4-0019 or above.
Drupal Moderate Ongoing

Mitigation

None

Detail

Reserved

Reference

Revision

Revision Date Description
1 2019-12-23 Initial public release.
2 2020-03-30 Update for Drupal 8 is now available in Affected Products.