Multiple critical vulnerabilities have been discovered in Drupal core. 
- Drupal 7.x
- Drupal 8.4.x
- Install the Drupal patches outlined in Drupal security advisory SA-CORE-2018-001.
- If you utilize the Open Berkeley turnkey Drupal web platform, your site will automatically be patched by end of day Feb. 22nd, 2018.