Skip to main content

Drupal AI Agents CVE-2026-13237

| EUVDEUVD-2026-43061 MEDIUM
Incorrect Authorization (CWE-863)
2026-07-10 drupal GHSA-7c7x-54hv-3m8c
4.8
CVSS 3.1 · Vendor: drupal
Share

Severity by source

Vendor (drupal) PRIMARY
4.8 MEDIUM
AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
vuln.today AI
4.8 MEDIUM

Network-reachable with no auth required, but high complexity due to path-knowledge prerequisite; limited confidentiality and integrity impact, no availability effect.

3.1 AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
4.0 AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (drupal).

CVSS VectorVendor: drupal

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

6
Analysis Generated
Jul 13, 2026 - 21:18 vuln.today
Severity Changed
Jul 13, 2026 - 19:22 NVD
CRITICAL MEDIUM
CVSS changed
Jul 13, 2026 - 19:22 NVD
9.1 (CRITICAL) 4.8 (MEDIUM)
CVSS changed
Jul 13, 2026 - 19:07 NVD
9.1 (CRITICAL)
Patch available
Jul 10, 2026 - 23:02 EUVD
CVE Published
Jul 10, 2026 - 21:44 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

Incorrect Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1.

AnalysisAI

Incorrect Authorization (CWE-863) in the Drupal AI Agents contributed module enables Forceful Browsing, allowing network-reachable attackers to access restricted AI agent resources without proper permission checks. Three distinct release branches are affected: 0.0.0-1.1.4, 1.2.0-1.2.5, and 1.3.0-1.3.1. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify Drupal site with AI Agents module
Delivery
Enumerate or infer AI agent resource URL paths
Exploit
Send unauthenticated HTTP request to restricted endpoint
Execution
Authorization check bypassed due to CWE-863 flaw
Impact
Read or modify restricted AI agent resource data

Vulnerability AssessmentAI

Exploitation The CVSS vector PR:N indicates no authentication is required to attempt exploitation. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Across all available signals, real-world risk is low-to-moderate. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who identifies a Drupal site running the AI Agents module enumerates or guesses resource URLs associated with AI agent endpoints and sends direct HTTP GET or POST requests to those paths without supplying authorization credentials or tokens. Due to the authorization logic flaw, the module processes the request and returns or modifies restricted AI agent data. …
Remediation A patch is available per the vendor advisory at https://www.drupal.org/sa-contrib-2026-057 - administrators should consult that advisory for the exact patched version in their active branch (1.1.x, 1.2.x, or 1.3.x) and upgrade immediately. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-13237 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy