vulnerability
FreeBSD: VID-19d648e0-ab69-11e9-bfef-000ffec0b3e1: drupal -- Drupal core - Access bypass
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jul 21, 2019 | Jul 22, 2019 | Dec 10, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 21, 2019
Added
Jul 22, 2019
Modified
Dec 10, 2025
Description
Drupal Security Team reports: In Drupal 8.7.4, when the experimental Workspaces module is enabled, an access bypass condition is created. This can be mitigated by disabling the Workspaces module. It does not affect any release other than Drupal 8.7.4.
Solution
freebsd-upgrade-package-drupal8
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.