Drupal has released security updates to address vulnerabilities in Drupal 8.6.x and 8.5.x. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.
Users and Administrators are encouraged to review releases Drupal Security advisory and apply necessary updates.