CVE-2019-6342

CVE-2019-6342: Drupal core - Critical - Access bypass - SA-CORE-2019-008

Vendor Drupal

Product Drupal Core

Published May 28, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

An access bypass vulnerability exists when the experimental Workspaces module in Drupal 8 core is enabled. This can be mitigated by disabling the Workspaces module. It does not affect any release other than Drupal 8.7.4.

Key dates

Disclosure timeline

May 28, 2020 CVE published

August 4, 2024 Record updated