Drupal has released critical updates addressing a vulnerability in Drupal 8, 7, and 6. A remote attacker could exploit this vulnerability to take control of an affected system.
NCCIC/US-CERT encourages users and administrators to review Drupal's Security Advisory and apply the necessary updates.
Please share your thoughts.
We recently updated our anonymous product survey; we'd welcome your feedback.