Drupal has published a security advisory to address vulnerabilities affecting the following product on the 12th of July 2023. It is recommended that you take the necessary precautions to ensure your products are always protected.
Two-factor Authentication (TFA) module for Drupal 8/9 – version prior to 8.x-1.1
For more information on this update, you can follow this URL:
https://www.drupal.org/sa-contrib-2023-030
The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.
PDF Download: Drupal security advisory.pdf
References
Drupal Security advisories. (12th July 2023). Reviewed from Drupal:
https://www.drupal.org/sa-contrib-2023-030
Drupal security advisory. (13th July 2023). Reviewed from Canadian Centre for Cyber Security:
https://www.cyber.gc.ca/en/alerts-advisories/drupal-security-advisory-av23-405