7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.967 High
EPSS
Percentile
99.7%
The Fast Permissions Administration module enables you to use inline filters on the permissions page, as well as loading the permissions form through a modal dialog.
The module doesn’t sufficiently check user access for the modal content callback, allowing unauthorized access to the permissions edit form.
Drupal core is not affected. If you do not use the contributed Fast Permissions Administration module, there is nothing you need to do.
Install the latest version:
Also see the Fast Permissions Administration project page.