CVE-2018-7602

critical-risk
Published 2018-07-19

A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being compromised. This vulnerability is related to Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002. Both SA-CORE-2018-002 and this vulnerability are being exploited in the wild.

Do I need to act?

!
94.4% chance of exploitation in next 30 days
EPSS score — higher than 6% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
!
2 public exploits available
44557, 44542
+
Fix available
Upgrade to: 36011bea44d71299796ead72025fd128eaa729b7, ef935986eb4183bdae62af2400f5c0af091018c1, b38a6670c4b13b91cd3820cce8fcd39db34809f7
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (4)

Affected Vendors

Debian Drupal

References (15)

Broken Link http://www.securityfocus.com/bid/103985
Broken Link http://www.securitytracker.com/id/1040754
Mailing List https://lists.debian.org/debian-lts-announce/2018/04/msg00030.html
Third Party Advisory https://www.debian.org/security/2018/dsa-4180
Patch https://www.drupal.org/sa-core-2018-004
Exploit https://www.exploit-db.com/exploits/44542/
Exploit https://www.exploit-db.com/exploits/44557/
Broken Link http://www.securityfocus.com/bid/103985
Broken Link http://www.securitytracker.com/id/1040754
Mailing List https://lists.debian.org/debian-lts-announce/2018/04/msg00030.html
Third Party Advisory https://www.debian.org/security/2018/dsa-4180
Patch https://www.drupal.org/sa-core-2018-004
Exploit https://www.exploit-db.com/exploits/44542/
Exploit https://www.exploit-db.com/exploits/44557/
US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-...
76
/ 100
critical-risk
Severity 32/34 · Critical
Exploitability 34/34 · Critical
Exposure 10/34 · Low