Is CVE-2020-13671 in the CISA Known Exploited Vulnerabilities catalog?

Yes — CVE-2020-13671 is listed in CISA KEV, remediation due 2022-07-18.

CISA Known Exploited Vulnerability

CVE-2020-13671

Improper sanitization in the extension file names is present in Drupal core.

⚠ Actively exploited (CISA KEV) Drupal 2020

CISA catalog entry

Product

Drupal core

Vendor

Drupal

Added to KEV

2022-01-18

Remediation due

2022-07-18

CVE-2020-13671 is tracked in the CISA Known Exploited Vulnerabilities catalog. WebPulse monitors it as part of its framework security intelligence.

Related vulnerabilities

CVE-2026-9082 CVE-2019-6340 CVE-2018-7602 CVE-2018-7600 CVE-2020-5410 CVE-2020-25213 CVE-2020-11738