Vulnerability Database

296,733

Total vulnerabilities in the database

CVE-2024-22362

Drupal contains a vulnerability with improper handling of structural elements. If this vulnerability is exploited, an attacker may be able to cause a denial-of-service (DoS) condition.

Published: Jan 16, 2024
Updated: May 4, 2025
CVE: CVE-2024-22362
GHSA: GHSA-62cf-jvpp-48q6
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
drupal / core	9.3.6	9.3.6.x
drupal / drupal	9.3.6	9.3.6.x

https://github.com/drupal/drupal
https://jvn.jp/en/jp/JVN63383723
https://jvn.jp/en/jp/JVN63383723/
https://www.drupal.org/
https://www.drupal.org/about/core/policies/core-release-cycles/schedule

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo