[MEDIUM] Views does not properly restrict access to the Ajax endpoint.

PKSA-d6ff-8r27-jzxg CVE-2017-6923 GHSA-v3f6-f29f-rgvp

Affected package: drupal/drupal

Affected version: >=8.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.3.7

Reported by:
FriendsOfPHP/security-advisories, GitHub