Vulnerability in Drupal.org Drupal Core
CVE-2017-6930
In Drupal versions 8.4.x versions before 8.4.5 when using node access controls with a multilingual site, Drupal marks the untranslated version of a node as the default fallback for access queries. This fallback is used for languages that d…
EPSS: 0.004 (62.6th percentile) — read the EPSS interpretation.
Affected products
- Drupal.org Drupal Core — versions 8.4.x versions before 8.4.5
References
- www.drupal.org/sa-core-2018-001 (x_refsource_CONFIRM)