| Max CVSS | 6.0 | Min CVSS | 6.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-6919 | 6.0 |
Drupal 8 before 8.2.8 and 8.3 before 8.3.1 allows critical access bypass by authenticated users if the RESTful Web Services (rest) module is enabled and the site allows PATCH requests.
|
03-10-2019 - 00:03 | 20-04-2017 - 02:59 |