{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T00:11:50.482","vulnerabilities":[{"cve":{"id":"CVE-2018-7600","sourceIdentifier":"mlhess@drupal.org","published":"2018-03-29T07:29:00.260","lastModified":"2025-10-31T22:05:42.410","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations."},{"lang":"es","value":"Drupal en versiones anteriores a la 7.58, 8.x anteriores a la 8.3.9, 8.4.x anteriores a la 8.4.6 y 8.5.x anteriores a la 8.5.1 permite que los atacantes remotos ejecuten código arbitrario debido a un problema que afecta a múltiples subsistemas con configuraciones de módulos por defecto o comunes."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"cisaExploitAdd":"2021-11-03","cisaActionDue":"2022-05-03","cisaRequiredAction":"Apply updates per vendor instructions.","cisaVulnerabilityName":"Drupal Core Remote Code Execution Vulnerability","weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*","versionEndIncluding":"7.57","matchCriteriaId":"32918FBA-EEAE-4103-AD2A-0E1914790A2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*","versionStartIncluding":"8.0.0","versionEndExcluding":"8.3.9","matchCriteriaId":"CB9AA188-842A-4465-833B-066371D5611E"},{"vulnerable":true,"criteria":"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*","versionStartIncluding":"8.4.0","versionEndExcluding":"8.4.6","matchCriteriaId":"0C796B60-2568-4E1F-A4CC-710DF21924BD"},{"vulnerable":true,"criteria":"cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*","versionStartIncluding":"8.5.0","versionEndExcluding":"8.5.1","matchCriteriaId":"FE407010-FFFB-454E-B14A-56AD24B2997C"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*","matchCriteriaId":"16F59A04-14CF-49E2-9973-645477EA09DA"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/103534","source":"mlhess@drupal.org","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040598","source":"mlhess@drupal.org","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600/","source":"mlhess@drupal.org","tags":["Broken Link","Third Party Advisory"]},{"url":"https://blog.appsecco.com/remote-code-execution-with-drupal-core-sa-core-2018-002-95e6ecc0c714","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"https://github.com/a2u/CVE-2018-7600","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"https://github.com/g0rx/CVE-2018-7600-Drupal-RCE","source":"mlhess@drupal.org","tags":["Patch","Third Party Advisory"]},{"url":"https://greysec.net/showthread.php?tid=2912&pid=10561","source":"mlhess@drupal.org","tags":["Broken Link","Issue Tracking","Third Party Advisory"]},{"url":"https://groups.drupal.org/security/faq-2018-002","source":"mlhess@drupal.org","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/03/msg00028.html","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"https://research.checkpoint.com/uncovering-drupalgeddon-2/","source":"mlhess@drupal.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://twitter.com/RicterZ/status/979567469726613504","source":"mlhess@drupal.org","tags":["Broken Link","Third Party Advisory"]},{"url":"https://twitter.com/RicterZ/status/984495201354854401","source":"mlhess@drupal.org","tags":["Broken Link","Third Party Advisory"]},{"url":"https://twitter.com/arancaytar/status/979090719003627521","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4156","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"https://www.drupal.org/sa-core-2018-002","source":"mlhess@drupal.org","tags":["Vendor Advisory"]},{"url":"https://www.exploit-db.com/exploits/44448/","source":"mlhess@drupal.org","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.exploit-db.com/exploits/44449/","source":"mlhess@drupal.org","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.exploit-db.com/exploits/44482/","source":"mlhess@drupal.org","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.synology.com/support/security/Synology_SA_18_17","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/blog/critical-drupal-core-vulnerability-what-you-need-to-know","source":"mlhess@drupal.org","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/103534","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1040598","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","VDB Entry"]},{"url":"https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory"]},{"url":"https://blog.appsecco.com/remote-code-execution-with-drupal-core-sa-core-2018-002-95e6ecc0c714","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/a2u/CVE-2018-7600","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://github.com/g0rx/CVE-2018-7600-Drupal-RCE","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://greysec.net/showthread.php?tid=2912&pid=10561","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Issue Tracking","Third Party Advisory"]},{"url":"https://groups.drupal.org/security/faq-2018-002","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://lists.debian.org/debian-lts-announce/2018/03/msg00028.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://research.checkpoint.com/uncovering-drupalgeddon-2/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]},{"url":"https://twitter.com/RicterZ/status/979567469726613504","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory"]},{"url":"https://twitter.com/RicterZ/status/984495201354854401","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory"]},{"url":"https://twitter.com/arancaytar/status/979090719003627521","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2018/dsa-4156","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.drupal.org/sa-core-2018-002","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://www.exploit-db.com/exploits/44448/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.exploit-db.com/exploits/44449/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.exploit-db.com/exploits/44482/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory","VDB Entry"]},{"url":"https://www.synology.com/support/security/Synology_SA_18_17","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.tenable.com/blog/critical-drupal-core-vulnerability-what-you-need-to-know","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-7600","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","tags":["US Government Resource"]}]}}]}