Apigee Edge - Moderately critical - Access bypass - SA-CONTRIB-2021-020

Project: Apigee EdgeDate: 2021-June-30Security risk: Moderately critical 11∕25 AC:Basic/A:User/CI:None/II:Some/E:Theoretical/TD:AllVulnerability: Access bypassDescription: The Apigee Edge module allows connecting a Drupal site to Apigee Edge in order to build a developer portal.
The module did not properly validate user access for data creation in certain circumstances.Solution: Install the latest version:

  • If you use the apigee_edge module for Drupal 8.x, upgrade to Apigee Edge module 8.x-1.2 or later. Note that the 8.x-1.2 release is old and superseded due to SA-CONTRIB-2020-028. Users of the module should upgrade to a version including or newer than 8.x-1.12.

Reported By: 

Fixed By: 

Coordinated By: 

Path to article https://www.drupal.org/sa-contrib-2021-020