Drupal has released security advisory to address vulnerability affecting Drupal 8.x versions before 8.5.6. If left unpatched, attackers could exploit them and gain complete control of the system.
Therefore, BtCIRT recommends users and administrators to review Drupal Security Update for more details and apply the necessary updates immediately.
Patch and be Protected.