Archived Content

In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
Alert

Drupal Releases Security Update 

Last Revised

Drupal has released security updates to address vulnerabilities affecting Drupal 9.3 and 9.4. An attacker could exploit some of these vulnerabilities to take control of an affected system.  

CISA encourages users and administrators to review Drupal security advisory SA-CORE-2022-015 and apply the necessary update.