Lucene search
OpenJS FoundationFRIENDSOFPHP:DRUPAL:CORE:CVE-2022-25277HistoryJul 20, 2022 - 6:00 p.m.
Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014
2022-07-2018:00:00
OpenJS Foundation
github.com
4
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.3%
More info at https://www.drupal.org/sa-core-2022-014
Affected configurations
Node
drupal_coredrupal_coreRange<9.4.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| drupal/core | lt | 9.4.3 |
Related
osv
osv
CVE-2022-25277
2023-04-26 15:15:08
BIT-drupal-2022-25277
2024-03-06 10:52:46
Drupal core arbitrary PHP code execution
2022-08-06 09:33:38
nvd
nvd
CVE-2022-25277
2023-04-26 15:15:08
ubuntucve
ubuntucve
CVE-2022-25277
2023-04-26 00:00:00
prion
prion
Remote code execution
2023-04-26 15:15:00
openvas
openvas
Drupal RCE Vulnerability (SA-CORE-2022-014) - Linux
2022-07-25 00:00:00
Drupal RCE Vulnerability (SA-CORE-2022-014) - Windows
2022-07-25 00:00:00
drupal
drupal
Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014
2022-07-20 00:00:00
cve
cve
CVE-2022-25277
2023-04-26 15:15:08
cvelist
cvelist
CVE-2022-25277
2023-04-26 00:00:00
veracode
veracode
Remote Code Execution
2022-08-08 03:19:24
github
github
Drupal core arbitrary PHP code execution
2022-08-06 09:33:38
nessus
nessus
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.3%
Related for FRIENDSOFPHP:DRUPAL:CORE:CVE-2022-25277