CVE-2024-11941

Name of the Vulnerable Software and Affected Versions Drupal Core versions 10.2.0 through 10.2.1 Drupal Core versions 10.1.0 through 10.1.7

Description A vulnerability in Drupal Core allows Excessive Allocation, which can be exploited to trigger a denial of service (DOS). The issue affects certain versions of Drupal Core.

Recommendations For versions 10.2.0 through 10.2.1, update to version 10.2.2 or later. For versions 10.1.0 through 10.1.7, update to version 10.1.8 or later. As a temporary workaround, consider disabling the Comment module to minimize the risk of exploitation.