GHSA-62cf-jvpp-48q6

Source

https://github.com/advisories/GHSA-62cf-jvpp-48q6

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/01/GHSA-62cf-jvpp-48q6/GHSA-62cf-jvpp-48q6.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-62cf-jvpp-48q6

Aliases

BIT-drupal-2024-22362
CVE-2024-22362

Published

2024-01-16T06:30:30Z

Modified

2024-01-24T08:13:29.324094Z

Summary

Drupal Denial of Service vulnerability

Details

Drupal contains a vulnerability with improper handling of structural elements. If this vulnerability is exploited, an attacker may be able to cause a denial-of-service (DoS) condition.

Database specific

{
    "nvd_published_at": "2024-01-16T04:15:07Z",
    "cwe_ids": [],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2024-01-19T22:11:17Z"
}

References

https://nvd.nist.gov/vuln/detail/CVE-2024-22362
https://github.com/drupal/drupal
https://jvn.jp/en/jp/JVN63383723

Affected packages

Packagist / drupal/core

Package

Name: drupal/core
Purl: pkg:composer/drupal/core

Affected ranges

Affected versions

9.*

9.3.6