Security News > 2018 > October > Two Critical RCE Bugs Patched in Drupal 7 and 8

Two Critical RCE Bugs Patched in Drupal 7 and 8

2018-10-20 17:09

Drupal's advisory also included three patches for "moderately critical" bugs.

News URL

https://threatpost.com/two-critical-rce-bugs-patched-in-drupal-7-and-8/138468/

#critical #drupal #RCE

Related news

Critical RCE bug in Microsoft Outlook now exploited in attacks (source)
Critical PHP RCE vulnerability mass exploited in new attacks (source)
Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Drupal		15	0	66	45	14	125

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.