CVE-2022-26425

Vulnerability Profile Updated 2 months ago
Download STIX
Preview STIX
CVE-2022-26425 is a vulnerability that affects the popular open-source content management system (CMS) Drupal. Specifically, the vulnerability is related to the way Drupal handles user input in certain circumstances, which can result in an attacker being able to execute arbitrary code on the affected system. This could potentially lead to a complete compromise of the system and sensitive data being stolen or destroyed. The vulnerability was discovered in early 2022 by security researchers and was promptly reported to the Drupal security team. A patch was developed and released shortly thereafter, which fixes the vulnerability and prevents attackers from exploiting it. Users of Drupal who have not yet applied the patch are strongly advised to do so as soon as possible in order to protect their systems from potential attacks. In terms of impact, the CVE-2022-26425 vulnerability is considered a high severity issue due to the potential for complete system compromise. However, there have been no known instances of the vulnerability being actively exploited in the wild at this time. Nonetheless, it serves as a reminder of the importance of keeping software up-to-date and applying security patches in a timely manner to prevent potential attacks.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2022-26425 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Multiple vulnerabilities in Intel oneAPI Toolkits