Security Advisory

CVE-2025-31694

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-31 21:51:40
Last updated 2025-04-29 15:19:38
Assigner drupal
State PUBLISHED

Description

Incorrect Authorization vulnerability in Drupal Two-factor Authentication (TFA) allows Forceful Browsing.This issue affects Two-factor Authentication (TFA): from 0.0.0 before 1.10.0.