Security Update:Drupal has released a MODERATELY CRITICAL security update addressing a vulnerability in Drupal Core
Drupal has released a MODERATELY CRITICAL security update addressing a vulnerability in Drupal Core
Status Type
Security Update
Private
Public
Date and Time
Thursday, March 21, 2019 - 13:07
Reason
Security update
Impact
Drupal users
WHAT HAPPENED?
Drupal has released a MODERATELY CRITICAL security update addressing a vulnerability in Drupal Core.
Advanced Users: For the full Public Announcement refer to:
- Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004: https://www.drupal.org/sa-core-2019-004 [1]
AFFECTED SYSTEMS:
- 8. 6 versions before 8.6.13
- 8.5 versions before 8.5.14
- 7 versions before 7.65
WHAT'S THE PROBLEM?
If exploited, this vulnerability may allow an attacker to take control of an affected system.
WHAT DO YOU NEED TO DO?
Users and Administrators should review the security advisory listed above and make the necessary updates.
RELATED LINKS
- IT Security - http://it.ucsf.edu/security [2]