Description

Drupal Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to access non-public files. Drupal Core versions 9.3.x ranging from 9.3.0 and up to and including 9.3.18 are vulnerable.

Remediation

Update to Drupal Core version 9.3.19 or latest

References

Related Vulnerabilities