CNNVD-202602-567 Information

CNNVD ID

CNNVD-202602-567

Related CVE

CVE-2026-0945

• CNNVD Published: 2026-02-04

Description (Chinese)

Drupal Role Delegation是Drupal公司的一个权限管理模块。 Drupal Role Delegation 1.5.0之前版本存在安全漏洞，该漏洞源于权限定义不安全，可能导致权限提升。

Description (English)

Drupal Role Delegation is a competency management module for Drupal. There was a security loophole in the pre-Drupal Role Delegation 1.5.0, which stemmed from the unsafe definition of authority, which could lead to an increase in authority.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2026-02-04

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2026-002

Patch

https://www.drupal.org/sa-contrib-2026-002