Drupal Core: Deserialization of Untrusted Data Vulnerability - Proactive Insights and Support For Open-Source Applications

In Drupal Core versions from 7.0 before 7.102, from 8.0.0 before 10.2.11, from 10.3.0 before 10.3.9 a medium severity vulnerability CVE-2024-55638 was detected. This vulnerability allows attackers to exploit deserialization of untrusted data, leading to object injection. Currently, there is no fix version for this issue. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2024-55638.