Lucene search
OpenJS FoundationFRIENDSOFPHP:DRUPAL:CORE:CVE-2022-25278HistoryJul 20, 2022 - 10:11 a.m.
Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
2022-07-2010:11:30
OpenJS Foundation
github.com
3
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
7.2 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.6%
More info at https://www.drupal.org/sa-core-2022-013
Affected configurations
Node
drupal_coredrupal_coreRange<9.4.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| drupal/core | lt | 9.4.3 |
Related
osv
osv
Access bypass in Drupal Core
2023-04-24 20:30:38
CVE-2022-25278
2023-04-26 15:15:08
BIT-drupal-2022-25278
2024-03-06 10:52:33
ubuntucve
ubuntucve
CVE-2022-25278
2023-04-26 00:00:00
openvas
openvas
Drupal 8.0 < 9.3.19, 9.4.0 < 9.4.3 Access Bypass (SA-CORE-2022-013) - Linux
2022-10-17 00:00:00
veracode
veracode
Access Bypass
2023-04-25 11:46:46
cvelist
cvelist
CVE-2022-25278
2023-04-26 00:00:00
nvd
nvd
CVE-2022-25278
2023-04-26 15:15:08
prion
prion
Code injection
2023-04-26 15:15:00
drupal
drupal
Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
2022-07-20 00:00:00
cve
cve
CVE-2022-25278
2023-04-26 15:15:08
github
github
Access bypass in Drupal Core
2023-04-24 20:30:38
nessus
nessus
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
7.2 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.6%
Related for FRIENDSOFPHP:DRUPAL:CORE:CVE-2022-25278