CVE-2024-13275

CVE-2024-13275: Security Kit - Less critical - Denial of Service - SA-CONTRIB-2024-039

Vendor Drupal
Product Security Kit
Weakness CWE-843
Published January 9, 2025
Last update January 14, 2025

CVSS base score

What the vulnerability does

01Description

Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Drupal Security Kit allows HTTP DoS.This issue affects Security Kit: from 0.0.0 before 2.0.3.

Key dates

02Disclosure timeline

January 9, 2025 CVE published
January 14, 2025 Record updated