Moderate severityNVD Advisory· Published Dec 5, 2024· Updated Dec 5, 2024
Drupal core - Moderately critical - Improper error handling - SA-CORE-2024-002
CVE-2024-11942
Description
A vulnerability in Drupal Core allows File Manipulation.This issue affects Drupal Core: from 10.0.0 before 10.2.10.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
drupal/corePackagist | >= 10.0.0, < 10.2.10 | 10.2.10 |
Affected products
3- osv-coords2 versions
>= 10.0.0, < 10.3.0+ 1 more
- (no CPE)range: >= 10.0.0, < 10.3.0
- (no CPE)range: >= 10.0.0, < 10.2.10
- Range: 10.0.0
Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-52jr-x6h6-xj6gghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-11942ghsaADVISORY
- www.drupal.org/sa-core-2024-002ghsaWEB
News mentions
1- Drupal core - Moderately critical - Improper error handling - SA-CORE-2024-002Drupal Security Advisories · Oct 16, 2024