FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

drupal -- Drupal Core - Multiple Vulnerabilities

Affected packages
drupal8 < 8.3.7

Details

VuXML ID 473b6a9e-8493-11e7-b24b-6cf0497db129
Discovery 2017-08-16
Entry 2017-08-19

Drupal Security Team:

CVE-2017-6923: Views - Access Bypass - Moderately Critical

CVE-2017-6924: REST API can bypass comment approval - Access Bypass - Moderately Critica

CVE-2017-6925: Entity access bypass for entities that do not have UUIDs or have protected revisions - Access Bypass - Critical

References

CVE Name CVE-2017-6923
CVE Name CVE-2017-6924
CVE Name CVE-2017-6925