CVE-2017-6381 — A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, an — CVE Database · The Intelligence Room