Number: AV18-124
Date: 3 August 2018
Purpose
The purpose of this advisory is to bring attention to a Drupal security advisory.
Assessment
Drupal has released a product update addressing security vulnerability in the Symfony library used in Drupal Core.
Affected Versions:
- Drupal 8.x versions prior to 8.5.6
Reference CVE: CVE-2018-14773
Suggested action
CCIRC recommends that owners/operators test and deploy the vendor released update or workaround to affected platforms accordingly.