#VU7181 Security restrictions bypass in Drupal - CVE-2017-6921
Published: June 23, 2017
Vulnerability identifier: #VU7181
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2017-6921
CWE-ID: CWE-20
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Drupal
Drupal
Software vendor:
Drupal
Drupal
Description
The vulnerability allows a remote attacker to bypass security restrictions on the site.
The weakness exists due to improper validation of some fields by the file REST resource when manipulating files. If the site has the RESTful Web Services (rest) module enabled, the file REST resource is enabled and allows PATCH requests and has, a remote attacker can obtain a user account on the site with permissions to upload files and to modify the file resource.
Successful exploitation of the vulnerability results in access bypass.
The weakness exists due to improper validation of some fields by the file REST resource when manipulating files. If the site has the RESTful Web Services (rest) module enabled, the file REST resource is enabled and allows PATCH requests and has, a remote attacker can obtain a user account on the site with permissions to upload files and to modify the file resource.
Successful exploitation of the vulnerability results in access bypass.
Remediation
Update to version 8.3.4.