Drupal Security Kit Type Confusion Vulnerability Leading to HTTP Denial-of-Service

Vulnerability

A type confusion vulnerability allowing HTTP denial-of-service has been identified in the Drupal Security Kit. This issue arises from the access of resources using incompatible types, which can be exploited to disrupt normal service. The vulnerability affects Security Kit versions 0.0.0 prior to 2.0.3.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition, disrupting normal HTTP service.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Drupal Security Kit Type Confusion Vulnerability Leading to HTTP Denial-of-Service

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating