๐ [SA-CORE-2020-011] Vulnerability existed in the File module
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: portal.patchman.co
A vulnerability existed in the File module which allowed an attacker to gain access to the file metadata of a permanent private file that they do not have access to by guessing the ID of the file.
This vulnerability affects the following application versions:
- Drupal 8.0.0
- Drupal 8.0.1
- Drupal 8.0.2
- Drupal 8.0.3
- Drupal 8.0.4
- Drupal 8.0.5
- Drupal 8.0.6
- Drupal 8.1.0
- Drupal 8.1.1
- Drupal 8.1.2
- Drupal 8.1.3
- Drupal 8.1.4
- Drupal 8.1.5
- Drupal 8.1.6
- Drupal 8.1.7
- Drupal 8.1.8
- Drupal 8.1.9
- Drupal 8.1.10
- Drupal 8.2.0
- Drupal 8.2.1
- Drupal 8.2.2
- Drupal 8.2.3
- Drupal 8.2.4
- Drupal 8.2.5
- Drupal 8.2.6
- Drupal 8.2.7
- Drupal 8.2.8
- Drupal 8.3.0
- Drupal 8.3.1
- Drupal 8.3.2
- Drupal 8.3.3
- Drupal 8.3.4
- Drupal 8.3.5
- Drupal 8.3.6
- Drupal 8.3.7
- Drupal 8.3.8
- Drupal 8.3.9
- Drupal 8.4.0
- Drupal 8.4.1
- Drupal 8.4.2
- Drupal 8.4.3
- Drupal 8.4.4
- Drupal 8.4.5
- Drupal 8.4.6
- Drupal 8.4.7
- Drupal 8.5.0
- Drupal 8.5.1
- Drupal 8.5.2