Description
An access bypass vulnerability exists when the experimental Workspaces module in Drupal 8 core is enabled. This can be mitigated by disabling the Workspaces module. It does not affect any release other than Drupal 8.7.4.
Remediation
References
Related Vulnerabilities
Internet Information Services Unchecked Return Value Vulnerability (CVE-2005-4360)
Prototype CVE-2020-27511 Vulnerability (CVE-2020-27511)
WordPress Plugin Japanized For WooCommerce Cross-Site Scripting (2.5.4)
WordPress Plugin Grid Gallery-Photo Image Grid Gallery Cross-Site Scripting (1.2.4)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0790)