What is the Issue?
Drupal, a free and open source platform that provides an easy framework for creating websites, discovered a vulnerability in its library (called Symfony) that could give cyber attackers access to caches and servers. The vulnerability could let parties with malicious intents bypass restrictions on higher level sites.
Why is this noteworthy?
Since Symfony, and mainly the Drupal platform, is used by endeavors such as the NCAA and Mint.com, this vulnerability could potentially put many web applications and users of said sites at risk of hacking.
What is the exposure or risk?
A remote attacker will exploit the Symfony library with a specially-crafted web header value which gives them control of affected websites. With control of Drupal-powered websites, attackers have access to users’ credentials and financial services linked to the sites.
What are the recommendations?
SKOUT recommends keeping the Drupal platform running on your devices up to date. The vulnerability has specifically been labeled as “CVE-2018-14773” and it directly affects the Symfony component that may be found in Drupal websites at versions 8.5.6 and earlier.
References:
- https://www.scmagazine.com/drupal-patches-vulnerability-in-symfony-library/article/785815/
- https://thehackernews.com/2018/08/symfony-drupal-hack.html?m=1
If you have any questions, please contact our Security Intelligence Center.
