Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Data Processing Errors Vulnerability - CVE-2017-6920 - Vulnerability Database
Drupal

Drupal Data Processing Errors Vulnerability - CVE-2017-6920

Critical
Reference: CVE-2017-6920
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-6920
Title: Drupal Data Processing Errors Vulnerability
Overview:

Drupal core 8 before versions 8.3.4 allows remote attackers to execute arbitrary code due to the PECL YAML parser not handling PHP objects safely during certain operations.