The UgCERT provides information and assistance to
its constituents in implementing proactive
measures to reduce the risks of computer
security incidents as well as responding
to such incidents when they occur.
Drupal has released an advisory to address vulnerabilities in Drupal core 8.x versions prior to 8.2.7.
A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
We encourage users and administrators to review Drupal's Security Advisory and apply the necessary update.