exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2017-6381

больше 8 лет назад

A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren't vulnerable, you can remove the <siteroot>/vendor/phpunit directory from your production deployments

CVSS3: 8.1

EPSS: Низкий

CVE-2017-6381

больше 8 лет назад

A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren't vulnerable, you can remove the <siteroot>/vendor/phpunit directory from your production deployments

CVSS3: 8.1

EPSS: Низкий

CVE-2017-6381

больше 8 лет назад

A 3rd party development library including with Drupal 8 development de ...

CVSS3: 8.1

EPSS: Низкий

GHSA-rhx9-3qf7-r3j7

около 3 лет назад

Drupal Remote code execution

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2017-6381 A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren't vulnerable, you can remove the <siteroot>/vendor/phpunit directory from your production deployments	CVSS3: 8.1	4% Низкий	больше 8 лет назад
CVE-2017-6381 A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. You might be vulnerable to this if you are running a version of Drupal before 8.2.2. To be sure you aren't vulnerable, you can remove the <siteroot>/vendor/phpunit directory from your production deployments	CVSS3: 8.1	4% Низкий	больше 8 лет назад
CVE-2017-6381 A 3rd party development library including with Drupal 8 development de ...	CVSS3: 8.1	4% Низкий	больше 8 лет назад
GHSA-rhx9-3qf7-r3j7 Drupal Remote code execution	CVSS3: 8.1	4% Низкий	около 3 лет назад

Уязвимостей на страницу