Drupal Releases Security Updates

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

America's Cyber Defense Agency

Drupal has released security updates to address vulnerabilities in Drupal 7.x, 8.7.x, and 8.8.x. An attacker could exploit some of these vulnerabilities to modify data on an affected website.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Drupal Security Advisories and apply the necessary updates:

• SA-CORE-2019-012

• SA-CORE-2019-011

• SA-CORE-2019-010

• SA-CORE-2019-009

This product is provided subject to this Notification and this Privacy & Use policy.

Drupal Releases Security Updates

Please share your thoughts

Cisco Releases Security Advisories for Cisco Integrated Management Controller

CISA Releases Three Industrial Control Systems Advisories

Oracle Releases Critical Patch Update Advisory for April 2024

CISA and Partners Release Advisory on Akira Ransomware

Drupal Releases Security Updates

Please share your thoughts

Related Advisories

Cisco Releases Security Advisories for Cisco Integrated Management Controller

CISA Releases Three Industrial Control Systems Advisories

Oracle Releases Critical Patch Update Advisory for April 2024

CISA and Partners Release Advisory on Akira Ransomware