Drupal has released updates addressing a vulnerability in Drupal 8 and 7. A remote attacker could exploit this vulnerability to gain access to sensitive information.
NCCIC encourages users and administrators to review the Drupal Security Advisory for additional information and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.