Vulnerability in Drupal Core's Third-Party PEAR Archive_Tar Library (CVE-2018-1000888)

Vulnerability in Drupal Core's Third-Party PEAR Archive_Tar Library (CVE-2018-1000888)

CVE-2019-6338 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; Drupal core uses the third-party PEAR Archive_Tar library. This library has released a security update which impacts some Drupal configurations. Refer to CVE-2018-1000888 for details

Learn more about our Web Application Penetration Testing UK.