IsItPatchedInstant security status for any software version
← Drupal

Is Drupal 9.1.15 patched?

Drupal · cycle 9.1 · end of life · Official site ↗
5/100Critical · exploited
Minimum safe version10.4.10

9.1.15 has 13 open critical-or-high vulnerabilities. Run 10.4.10 or later to clear them. See what 10.4.10 fixes →

Known issues affecting 9.1.15

Exploited first, then by exploitation probability.

CVE-2026-9082 CRITICAL ● exploited EPSS 10% → fixed in 11.3.10 CVE-2024-55636 CRITICAL EPSS 11% → fixed in 11.0.8 CVE-2024-55637 CRITICAL EPSS 10% → fixed in 11.0.8 CVE-2024-55638 CRITICAL EPSS 10% → fixed in 10.3.9 CVE-2022-39261 HIGH EPSS 10% → fixed in 9.4.7 CVE-2024-12393 MEDIUM EPSS 3% → fixed in 11.0.8 CVE-2022-25277 HIGH EPSS 2% → fixed in 9.4.3 CVE-2023-5256 HIGH EPSS 1% → fixed in 10.1.4 CVE-2024-55634 HIGH EPSS 1% → fixed in 11.0.8 CVE-2022-24729 MEDIUM EPSS 1% → fixed in 9.3.8 CVE-2022-24728 MEDIUM EPSS 1% → fixed in 9.3.8 CVE-2022-24775 HIGH EPSS 1% → fixed in 9.3.9 CVE-2024-11941 HIGH EPSS 1% → fixed in 10.2.2 CVE-2022-25275 HIGH EPSS 1% → fixed in 9.4.3 CVE-2022-25278 MEDIUM EPSS 0% → fixed in 9.4.3 CVE-2022-25273 HIGH EPSS 0% → fixed in 9.3.12 CVE-2025-3057 MEDIUM EPSS 0% → fixed in 11.1.3 CVE-2025-31674 HIGH EPSS 0% → fixed in 11.1.3 CVE-2025-31675 MEDIUM EPSS 0% → fixed in 11.1.5 CVE-2025-13081 MEDIUM EPSS 0% → fixed in 11.2.8
Last checked: Wed, 10 Jun 2026 22:18:30 UTC