Cyber Resilience

CVE-2024-11942

Medium

Published: 05 December 2024

Published
05 December 2024
Modified
02 June 2025
KEV Added
Patch
CVSS Score v3.1 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS Score 0.0156 81.9th percentile
Risk Priority 13 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-11942 is a medium-severity Detection of Error Condition Without Action (CWE-390) vulnerability in Drupal Drupal. Its CVSS base score is 5.9 (Medium).

Operationally, ranked in the top 18.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A vulnerability in Drupal Core allows File Manipulation.This issue affects Drupal Core: from 10.0.0 before 10.2.10.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

drupal
drupal
10.0.0 — 10.2.10

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-390

Requires explicit action (alert plus additional responses) on audit logging failures rather than detecting the error condition without acting.

addresses: CWE-390

The control mandates response actions to address results from monitoring and assessments, preventing detection of error conditions without subsequent corrective action.

addresses: CWE-390

Procedures require detection of error/incident conditions followed by defined response actions.

addresses: CWE-390

IR testing verifies that detected error conditions trigger appropriate response actions rather than being ignored.

addresses: CWE-390

The containment, eradication, and recovery steps ensure detected incidents trigger concrete actions rather than no response.

addresses: CWE-390

Provides assistance for handling incidents, ensuring detected error conditions lead to appropriate user actions rather than inaction.

addresses: CWE-390

Requires response actions to analysis of monitoring data, directly preventing detection of error conditions without follow-up action.

addresses: CWE-390

Reporting on security performance measures requires confirming that detected error conditions trigger appropriate actions rather than being ignored.

References