CNNVD-202602-563 Information
Feb 04, 2026
cve
CNNVD ID
CNNVD-202602-563
Related CVE
- CNNVD Published: 2026-02-04
Description (Chinese)
Drupal Microsoft Entra ID SSO Login是Drupal公司的一个微软单点登录集成模块。 Drupal Microsoft Entra ID SSO Login 1.0.4之前版本存在安全漏洞,该漏洞源于使用备用路径或通道绕过身份验证,可能导致权限提升。
Description (English)
Drupal Microsoft Entra ID SSO Login is a Microsoft Single Point Login Integration Module of Drupal. There was a security loophole in the pre-Drupal Microsoft Entra ID SSO Login version 1.4, which stemmed from the use of a back-up path or channel to bypass identification, which could lead to increased access.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Drupal
Published
2026-02-04
Last Modified
2026-02-24
References
https://www.drupal.org/sa-contrib-2026-005
Patch
https://www.drupal.org/sa-contrib-2026-005
Share on: