SecuritySpace - CVE-2017-6921

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

CVE Kennung: CVE-2017-6921

Beschreibung: In Drupal 8 prior to 8.3.4; The file REST resource does not properly validate some fields when manipulating files. A site is only affected by this if the site has the RESTful Web Services (rest) module enabled, the file REST resource is enabled and allows PATCH requests, and an attacker can get or register a user account on the site with permissions to upload files and to modify the file resource.

Test Kennungen: Nicht verfügbar

Querverweise: Common Vulnerability Exposure (CVE) ID: CVE-2017-6921
BugTraq ID: 99222
http://www.securityfocus.com/bid/99222
http://www.securitytracker.com/id/1038781

CVE Kennung:	CVE-2017-6921
Beschreibung:	In Drupal 8 prior to 8.3.4; The file REST resource does not properly validate some fields when manipulating files. A site is only affected by this if the site has the RESTful Web Services (rest) module enabled, the file REST resource is enabled and allows PATCH requests, and an attacker can get or register a user account on the site with permissions to upload files and to modify the file resource.
Test Kennungen:	Nicht verfügbar
Querverweise:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6921 BugTraq ID: 99222 http://www.securityfocus.com/bid/99222 http://www.securitytracker.com/id/1038781