[MEDIUM] Incorrect authorization in Drupal core

PKSA-2tvs-gcpz-cmm6 CVE-2022-25270 GHSA-73q4-j324-2qcc

Affected package: drupal/core

Affected version: >=8.0.0,<9.2.13|>=9.3.0,<9.3.6

Reported by:
GitHub