Ref# ADV2024_162 | Date: May 21st 2024

---

Drupal has published a security advisory highlighting vulnerabilities in the following product on May 15th, 2024. It is recommended that you take the necessary precautions by ensuring your products are always updated.

• RESTful Web Services – versions prior to 7.x-2.10

For more information on this update, you can follow this URL:
RESTful Web Services – Critical – Access bypass – SA-CONTRIB-2024-019

The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.

PDF Download: Drupal Security Advisory

References

• Drupal Security advisories. (May 15th, 2024). Retrieved from Drupal.
  https://www.drupal.org/security
• Drupal Security Advisory. (May 16th, 2024). Retrieved from Canadian Centre for Cyber Security.
  https://www.cyber.gc.ca/en/alerts-advisories/drupal-security-advisory-av24-275