CVE-2017-6922

MEDIUM EXPLOITED IN THE WILD

Drupal Core <8.3.4 & 7.x <7.56 - Auth Bypass

Title source: llm

Exploitation Summary

CVE-2017-6922 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).

Description

In Drupal core 8.x prior to 8.3.4 and Drupal core 7.x prior to 7.56; Private files that have been uploaded by an anonymous user but not permanently attached to content on the site should only be visible to the anonymous user that uploaded them, rather than all anonymous users. Drupal core did not previously provide this protection, allowing an access bypass vulnerability to occur. This issue is mitigated by the fact that in order to be affected, the site must allow anonymous users to upload files into a private file system.

References (4)

Core 4

Core References

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2017/dsa-3897

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/99219

Patch, Vendor Advisory x_refsource_confirm

https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1038781

Scores

CVSS v3 6.5

EPSS 0.0170

EPSS Percentile 82.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

VulnCheck KEV 2017-06-21

InTheWild.io 2017-06-21

CWE

CWE-552

Status published

Products (5)

debian/debian_linux 8.0

debian/debian_linux 9.0

drupal/core 7.0 - 7.56Packagist

drupal/drupal 7.0 - 7.56

drupal/drupal 8.0 - 8.3.4Packagist

Published Jan 22, 2019

Tracked Since Feb 18, 2026