22 September 2023
Drupal has released a security advisory to address a vulnerability in the Drupal products. The details of security update can be found at: https://www.drupal.org/sa-core-2023-006
For detailed information of the affected products, please refer to the sections "Affected versions" and "Description" of corresponding security advisory at vendor's website.
Successful exploitation could lead to privilege escalation on an affected system.
The product vendor has released patches to address the issue.
If the patches cannot be applied immediately, administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.