Drupal has published a security advisory highlighting vulnerabilities in the following versions on the 25th of May 2022. It is recommended that you take the necessary precautions by ensuring your products are always updated.
Drupal 9.3
Drupal 9.2
For more information on these updates, you can follow these URLs:
Drupal core – Moderately critical – Third-party libraries – SA-CORE-2022-010 | Drupal.org
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: ADV2022_137 Drupal Security Advisory.pdf
References
Drupal Security Advisory (27th May 2022). Retrieved from Cybersecurity & Infrastructure security Agency.
Drupal Releases Security Updates | CISA https://cyber.gc.ca/en/alerts/dell-security-advisory-av22-294
Drupal Security Advisory (26th May 2022). Retrieved from Drupal.
Drupal core – Moderately critical – Third-party libraries – SA-CORE-2022-010 | Drupal.org