Lucene search
Veracode Vulnerability DatabaseVERACODE:4287HistoryMay 24, 2017 - 6:52 a.m.
Access Bypass
2017-05-2406:52:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
EPSS
0.003
Percentile
68.8%
drupal core is vulenrable to access bypass. If a website is running RESTful Web Services and allows PATCH requests, an authenticated user can bypass access restrictions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| drupal/core | eq | 8.3.0 | |
| drupal/core | le | 8.2.7 |
Related
fedora
fedora
[SECURITY] Fedora 25 Update: drupal8-8.3.1-1.fc25
2017-05-02 02:03:47
[SECURITY] Fedora 24 Update: drupal8-8.3.1-1.fc24
2017-05-02 00:25:00
[SECURITY] Fedora 26 Update: drupal8-8.3.1-1.fc26
2017-04-27 20:56:56
osv
osv
Drupal access control bypass vulnerability
2022-05-13 01:46:49
CVE-2017-6919
2017-04-20 02:59:00
freebsd
freebsd
drupal8 -- Drupal Core - Critical - Access Bypass
2017-04-19 00:00:00
openvas
openvas
Fedora Update for drupal8 FEDORA-2017-e8767a2fbb
2017-05-03 00:00:00
Fedora Update for drupal8 FEDORA-2017-041473e742
2017-05-03 00:00:00
Drupal Core Access Bypass Vulnerability (SA-CORE-2017-002)
2017-04-20 00:00:00
prion
prion
Design/Logic Flaw
2017-04-20 02:59:00
nessus
nessus
FreeBSD : drupal8 -- Drupal Core - Critical - Access Bypass (1455c86c-26c2-11e7-9daa-6cf0497db129)
2017-04-24 00:00:00
Fedora 24 : drupal8 (2017-e8767a2fbb)
2017-05-02 00:00:00
Fedora 25 : drupal8 (2017-041473e742)
2017-05-02 00:00:00
friendsofphp
friendsofphp
Access bypass
2017-04-19 16:07:22
Access bypass
2017-04-19 16:07:22
ubuntucve
ubuntucve
CVE-2017-6919
2017-04-20 00:00:00
cvelist
cvelist
CVE-2017-6919
2017-04-20 02:43:00
github
github
Drupal access control bypass vulnerability
2022-05-13 01:46:49
seebug
seebug
Drupal Core - Access Bypass vulnerability (CVE-2017-6919)
2017-04-21 00:00:00
cve
cve
CVE-2017-6919
2017-04-20 02:59:00
nvd
nvd
CVE-2017-6919
2017-04-20 02:59:00