CVE-2024-13246

Name of the Vulnerable Software and Affected Versions Node Access Rebuild Progressive versions 0.0.0 through 2.0.1 Node Access Rebuild Progressive version prior to 2.0.2 can be simplified to the above range, so it is omitted to avoid duplication.

Description The issue is related to improper ownership management in the Node Access Rebuild Progressive module of the Drupal CMS system, which is associated with access control deficiencies. This can allow a remote attacker to bypass security restrictions. The vulnerability may enable an attacker to influence the target via framing.

Recommendations For Node Access Rebuild Progressive versions 0.0.0 through 2.0.1, update to version 2.0.2 or later to resolve the issue. At the moment, there is no other information about additional mitigation measures for this vulnerability.