A critical vulnerability has been reported in the Drupal Tealium iQ Tag Management module that could allow an attacker to perform PHP Object Injection, potentially resulting in arbitrary PHP code execution on the affected system.
Target Audience:
All end-user organizations and individuals using affected Drupal module.
Risk Assessment:
High risk of arbitrary code execution, unauthorized access and modification, and full system compromise.
Impact Assessment:
Potential for data exposure and theft, unauthorized access, and disruption of services.
The information provided herein is on "as is" basis, without warranty of any kind.