CVE-2018-7602 - Drupal Core Remote Code Execution Vulnerability
Project:Drupal
Product:Core
Date Added:2022-04-13Due Date:2022-05-04
Vulnerability Name
Drupal Core Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists within multiple subsystems of Drupal that can allow attackers to exploit multiple attack vectors on a Drupal site.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-7602