Vulnerability-Lookup

CVE-2024-55892 (GCVE-0-2024-55892)

Vulnerability from cvelistv5 – Published: 2025-01-14 20:01 – Updated: 2025-01-14 20:13

Title

Potential Open Redirect via Parsing Differences in TYPO3

Summary

TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\CMS\Core\Http\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks. Users are advised to update to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 which fix the problem described. There are no known workarounds for this vulnerability.

Severity

4.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Assigner

GitHub_M

References

2 references

URL	Tags
https://github.com/TYPO3/typo3/security/advisorie…	x_refsource_CONFIRM
https://typo3.org/security/advisory/typo3-core-sa…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
TYPO3	typo3	Affected: >= 9.0.0, < 9.5.49 Affected: >= 10.0.0, < 10.4.48 Affected: >= 11.0.0, < 11.5.42 Affected: >= 12.0.0, < 12.4.25 Affected: >= 13.0.0, < 13.4.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-55892",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-01-14T20:12:41.686181Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-01-14T20:13:02.579Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "typo3",
          "vendor": "TYPO3",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 9.0.0, \u003c 9.5.49"
            },
            {
              "status": "affected",
              "version": "\u003e= 10.0.0, \u003c 10.4.48"
            },
            {
              "status": "affected",
              "version": "\u003e= 11.0.0, \u003c 11.5.42"
            },
            {
              "status": "affected",
              "version": "\u003e= 12.0.0, \u003c 12.4.25"
            },
            {
              "status": "affected",
              "version": "\u003e= 13.0.0, \u003c 13.4.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\\CMS\\Core\\Http\\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks. Users are advised to update to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 which fix the problem described. There are no known workarounds for this vulnerability."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-601",
              "description": "CWE-601: URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-01-14T20:01:55.952Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr"
        },
        {
          "name": "https://typo3.org/security/advisory/typo3-core-sa-2025-002",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-002"
        }
      ],
      "source": {
        "advisory": "GHSA-2fx5-pggv-6jjr",
        "discovery": "UNKNOWN"
      },
      "title": "Potential Open Redirect via Parsing Differences in TYPO3"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-55892",
    "datePublished": "2025-01-14T20:01:55.952Z",
    "dateReserved": "2024-12-12T15:03:39.206Z",
    "dateUpdated": "2025-01-14T20:13:02.579Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-55892",
      "date": "2026-05-28",
      "epss": "0.00186",
      "percentile": "0.40126"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-55892\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-01-14T20:15:28.963\",\"lastModified\":\"2025-08-26T18:55:45.330\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\\\\CMS\\\\Core\\\\Http\\\\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks. Users are advised to update to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 which fix the problem described. There are no known workarounds for this vulnerability.\"},{\"lang\":\"es\",\"value\":\"TYPO3 es un framework gestor de contenidos gratuito y de c\u00f3digo abierto. Las aplicaciones que utilizan `TYPO3\\\\CMS\\\\Core\\\\Http\\\\Uri` para analizar URL proporcionadas externamente (por ejemplo, a trav\u00e9s de un par\u00e1metro de consulta) y validar el host de la URL analizada pueden ser vulnerables a ataques de redireccionamiento abierto o SSRF si la URL se utiliza despu\u00e9s de pasar las comprobaciones de validaci\u00f3n. Se recomienda a los usuarios que actualicen a las versiones 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 de TYPO3, que solucionan el problema descrito. No se conocen Workarounds para esta vulnerabilidad.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N\",\"baseScore\":4.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":2.5},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-601\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.0.0\",\"versionEndExcluding\":\"9.5.49\",\"matchCriteriaId\":\"0F7C8507-562E-4C5F-A4FA-8F6E7C0E644B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndExcluding\":\"10.4.48\",\"matchCriteriaId\":\"70D58A0F-F47F-4454-B668-3B1FC3104327\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.0.0\",\"versionEndExcluding\":\"11.5.42\",\"matchCriteriaId\":\"AB276CC9-8C28-453D-A352-A6A081F9E77C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndExcluding\":\"12.4.25\",\"matchCriteriaId\":\"C5D9FF56-492A-4D21-B27E-BC6D092C173D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0.0\",\"versionEndExcluding\":\"13.4.3\",\"matchCriteriaId\":\"FAC9A65F-E061-4F0F-83D2-7476C3A9CD7E\"}]}]}],\"references\":[{\"url\":\"https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://typo3.org/security/advisory/typo3-core-sa-2025-002\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-55892\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-14T20:12:41.686181Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-14T20:12:56.710Z\"}}], \"cna\": {\"title\": \"Potential Open Redirect via Parsing Differences in TYPO3\", \"source\": {\"advisory\": \"GHSA-2fx5-pggv-6jjr\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.8, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"TYPO3\", \"product\": \"typo3\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 9.0.0, \u003c 9.5.49\"}, {\"status\": \"affected\", \"version\": \"\u003e= 10.0.0, \u003c 10.4.48\"}, {\"status\": \"affected\", \"version\": \"\u003e= 11.0.0, \u003c 11.5.42\"}, {\"status\": \"affected\", \"version\": \"\u003e= 12.0.0, \u003c 12.4.25\"}, {\"status\": \"affected\", \"version\": \"\u003e= 13.0.0, \u003c 13.4.3\"}]}], \"references\": [{\"url\": \"https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr\", \"name\": \"https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://typo3.org/security/advisory/typo3-core-sa-2025-002\", \"name\": \"https://typo3.org/security/advisory/typo3-core-sa-2025-002\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\\\\CMS\\\\Core\\\\Http\\\\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks. Users are advised to update to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 which fix the problem described. There are no known workarounds for this vulnerability.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-601\", \"description\": \"CWE-601: URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-01-14T20:01:55.952Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-55892\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-14T20:13:02.579Z\", \"dateReserved\": \"2024-12-12T15:03:39.206Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-01-14T20:01:55.952Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2025-AVI-0028

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Typo3. Certaines d'entre elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une injection de requêtes illégitimes par rebond (CSRF) et un contournement de la politique de sécurité.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Typo3	Typo3	typo3/cms-core versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-beuser versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-beuser versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-belog versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-form versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-form versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-belog versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-beuser versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-core versions 9.x antérieures à 9.5.49 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-form versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-scheduler versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-core versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-beuser versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-install versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-belog versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-form versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-lowlevel versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-core versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-belog versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-core versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 11.x antérieures à 11.5.42 pour composer

References

Title

Publication Time

CERTFR-2025-AVI-0028

Vulnerability from certfr_avis - Published: - Updated:

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Typo3	Typo3	typo3/cms-core versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-beuser versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-beuser versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-belog versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-form versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-form versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-belog versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-beuser versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-core versions 9.x antérieures à 9.5.49 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-form versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-dashboard versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-extensionmanager versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-scheduler versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-core versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-beuser versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-install versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-belog versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-form versions 13.x antérieures à 13.4.3 pour composer
Typo3	Typo3	typo3/cms-lowlevel versions 11.x antérieures à 11.5.42 pour composer
Typo3	Typo3	typo3/cms-core versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-belog versions 12.x antérieures à 12.4.25 pour composer
Typo3	Typo3	typo3/cms-core versions 10.x antérieures à 10.4.48 pour composer
Typo3	Typo3	typo3/cms-indexed-search versions 11.x antérieures à 11.5.42 pour composer

References

Title

Publication Time

FKIE_CVE-2024-55892

Vulnerability from fkie_nvd - Published: 2025-01-14 20:15 - Updated: 2025-08-26 18:55

Severity

4.8 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Summary

References

	URL	Tags
	security-advisories@github.com	https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr	Vendor Advisory
	security-advisories@github.com	https://typo3.org/security/advisory/typo3-core-sa-2025-002	Vendor Advisory

Impacted products

Vendor	Product	Version
typo3	typo3	*
typo3	typo3	*
typo3	typo3	*
typo3	typo3	*
typo3	typo3	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F7C8507-562E-4C5F-A4FA-8F6E7C0E644B",
              "versionEndExcluding": "9.5.49",
              "versionStartIncluding": "9.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "70D58A0F-F47F-4454-B668-3B1FC3104327",
              "versionEndExcluding": "10.4.48",
              "versionStartIncluding": "10.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB276CC9-8C28-453D-A352-A6A081F9E77C",
              "versionEndExcluding": "11.5.42",
              "versionStartIncluding": "11.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5D9FF56-492A-4D21-B27E-BC6D092C173D",
              "versionEndExcluding": "12.4.25",
              "versionStartIncluding": "12.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FAC9A65F-E061-4F0F-83D2-7476C3A9CD7E",
              "versionEndExcluding": "13.4.3",
              "versionStartIncluding": "13.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\\CMS\\Core\\Http\\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks. Users are advised to update to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 which fix the problem described. There are no known workarounds for this vulnerability."
    },
    {
      "lang": "es",
      "value": "TYPO3 es un framework gestor de contenidos gratuito y de c\u00f3digo abierto. Las aplicaciones que utilizan `TYPO3\\CMS\\Core\\Http\\Uri` para analizar URL proporcionadas externamente (por ejemplo, a trav\u00e9s de un par\u00e1metro de consulta) y validar el host de la URL analizada pueden ser vulnerables a ataques de redireccionamiento abierto o SSRF si la URL se utiliza despu\u00e9s de pasar las comprobaciones de validaci\u00f3n. Se recomienda a los usuarios que actualicen a las versiones 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3 de TYPO3, que solucionan el problema descrito. No se conocen Workarounds para esta vulnerabilidad."
    }
  ],
  "id": "CVE-2024-55892",
  "lastModified": "2025-08-26T18:55:45.330",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 2.5,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-01-14T20:15:28.963",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr"
    },
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-002"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-601"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    }
  ]
}

GHSA-2FX5-PGGV-6JJR

Vulnerability from github – Published: 2025-01-14 15:24 – Updated: 2025-01-15 15:26

Summary

TYPO3 Potential Open Redirect via Parsing Differences

Details

Problem

Applications that use TYPO3\CMS\Core\Http\Uri to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks.

Solution

Update to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS that fix the problem described.

Credits

Thanks to Sam Mush and Christian Eßl who reported this issue and to TYPO3 core & security team member Benjamin Franzke who fixed the issue.

References

TYPO3-CORE-SA-2025-002

Severity

4.8 (Medium)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 9.5.48"
      },
      "package": {
        "ecosystem": "Packagist",
        "name": "typo3/cms-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "9.0.0"
            },
            {
              "fixed": "9.5.49"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 10.4.47"
      },
      "package": {
        "ecosystem": "Packagist",
        "name": "typo3/cms-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "10.0.0"
            },
            {
              "fixed": "10.4.48"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 11.5.41"
      },
      "package": {
        "ecosystem": "Packagist",
        "name": "typo3/cms-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "11.0.0"
            },
            {
              "fixed": "11.5.42"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 12.4.24"
      },
      "package": {
        "ecosystem": "Packagist",
        "name": "typo3/cms-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "12.0.0"
            },
            {
              "fixed": "12.4.25"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 13.4.2"
      },
      "package": {
        "ecosystem": "Packagist",
        "name": "typo3/cms-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "13.0.0"
            },
            {
              "fixed": "13.4.3"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-55892"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-601"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2025-01-14T15:24:20Z",
    "nvd_published_at": "2025-01-14T20:15:28Z",
    "severity": "MODERATE"
  },
  "details": "### Problem\nApplications that use `TYPO3\\CMS\\Core\\Http\\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of the parsed URL may be vulnerable to open redirect or SSRF attacks if the URL is used after passing the validation checks.\n\n### Solution\nUpdate to TYPO3 versions 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS that fix the problem described.\n\n### Credits\nThanks to Sam Mush and Christian E\u00dfl who reported this issue and to TYPO3 core \u0026 security team member Benjamin Franzke who fixed the issue.\n\n### References\n* [TYPO3-CORE-SA-2025-002](https://typo3.org/security/advisory/typo3-core-sa-2025-002)\n",
  "id": "GHSA-2fx5-pggv-6jjr",
  "modified": "2025-01-15T15:26:55Z",
  "published": "2025-01-14T15:24:20Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/TYPO3/typo3/security/advisories/GHSA-2fx5-pggv-6jjr"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55892"
    },
    {
      "type": "WEB",
      "url": "https://github.com/TYPO3/typo3/commit/a4abf48d254685f43383e6e7f80d48aebaea56af"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/TYPO3/typo3"
    },
    {
      "type": "WEB",
      "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-002"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
      "type": "CVSS_V3"
    }
  ],
  "summary": "TYPO3 Potential Open Redirect via Parsing Differences"
}

WID-SEC-W-2025-0055

Vulnerability from csaf_certbund - Published: 2025-01-13 23:00 - Updated: 2025-01-13 23:00

Summary

TYPO3 Core: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: TYPO3 ist ein freies Content-Management-System, basierend auf der Scriptsprache PHP und einer SQL-Datenbank. Über zahlreiche Extensions kann der Funktionsumfang der Core-Installation individuell erweitert werden.

Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in TYPO3 Core ausnutzen, um Dateien zu manipulieren und vertrauliche Informationen preiszugeben.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2024-55892

Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleinträge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann möglicherweise zur Remotecodeausführung führen. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden können. Dazu muss das Opfer eine bösartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erfüllung spezieller Bedingungen.

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55893

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55894

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55920

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55921

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55922

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55923

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55924

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55945

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

CVE-2024-55891

Es besteht eine Schwachstelle in TYPO3 Core. Diese Schwachstelle betrifft das Install Tool, da das Passwort im Klartext protokolliert wird, wenn der für das Passwort verwendete Hash-Mechanismus nicht korrekt ist. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
TYPO3 Core <12.4.25 TYPO3 / Core		<12.4.25
TYPO3 Core <13.4.3 TYPO3 / Core		<13.4.3

References

13 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://typo3.org/article/typo3-1343-and-12425-se…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external
https://typo3.org/security/advisory/typo3-core-sa…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "TYPO3 ist ein freies Content-Management-System, basierend auf der Scriptsprache PHP und einer SQL-Datenbank. \u00dcber zahlreiche Extensions kann der Funktionsumfang der Core-Installation individuell erweitert werden.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer  oder authentisierter Angreifer kann mehrere Schwachstellen in TYPO3 Core ausnutzen, um Dateien zu manipulieren und vertrauliche Informationen preiszugeben.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0055 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0055.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0055 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0055"
      },
      {
        "category": "external",
        "summary": "TYPO3 13.4.3 and 12.4.25 security releases vom 2025-01-13",
        "url": "https://typo3.org/article/typo3-1343-and-12425-security-releases-published"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-001"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-002"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-003"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-004"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-005"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-006"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-007"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-008"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-009"
      },
      {
        "category": "external",
        "summary": "Typo3 Security Advisory vom 2025-01-13",
        "url": "https://typo3.org/security/advisory/typo3-core-sa-2025-010"
      }
    ],
    "source_lang": "en-US",
    "title": "TYPO3 Core: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-01-13T23:00:00.000+00:00",
      "generator": {
        "date": "2025-01-14T12:33:16.502+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2025-0055",
      "initial_release_date": "2025-01-13T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-01-13T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c13.4.3",
                "product": {
                  "name": "TYPO3 Core \u003c13.4.3",
                  "product_id": "T040127"
                }
              },
              {
                "category": "product_version",
                "name": "13.4.3",
                "product": {
                  "name": "TYPO3 Core 13.4.3",
                  "product_id": "T040127-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:typo3:typo3:13.4.3"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c12.4.25",
                "product": {
                  "name": "TYPO3 Core \u003c12.4.25",
                  "product_id": "T040128"
                }
              },
              {
                "category": "product_version",
                "name": "12.4.25",
                "product": {
                  "name": "TYPO3 Core 12.4.25",
                  "product_id": "T040128-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:typo3:typo3:12.4.25"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Core"
          }
        ],
        "category": "vendor",
        "name": "TYPO3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-55892",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55892"
    },
    {
      "cve": "CVE-2024-55893",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55893"
    },
    {
      "cve": "CVE-2024-55894",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55894"
    },
    {
      "cve": "CVE-2024-55920",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55920"
    },
    {
      "cve": "CVE-2024-55921",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55921"
    },
    {
      "cve": "CVE-2024-55922",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55922"
    },
    {
      "cve": "CVE-2024-55923",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55923"
    },
    {
      "cve": "CVE-2024-55924",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55924"
    },
    {
      "cve": "CVE-2024-55945",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in TYPO3 Core. Diese Schwachstellen betreffen mehrere Subkomponenten, darunter die HTTP URI-Komponente, das Log-Modul, das Dashboard-Modul, unter anderem aufgrund von Cross-Site Request Forgery und einem Open Redirect-Problem. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Daten zu manipulieren, z. B. um Protokolleintr\u00e4ge zu entfernen, Dashboard-Konfigurationen zu manipulieren oder Erweiterungen zu installieren. Letzteres kann m\u00f6glicherweise zur Remotecodeausf\u00fchrung f\u00fchren. Die meisten Schwachstellen erfordern eine Benutzerinteraktion, damit sie erfolgreich ausgenutzt werden k\u00f6nnen. Dazu muss das Opfer eine b\u00f6sartige URL aufrufen, die auf das Backend abzielt. Einige der Schwachstellen erfordern die Erf\u00fcllung spezieller Bedingungen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55945"
    },
    {
      "cve": "CVE-2024-55891",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in TYPO3 Core. Diese Schwachstelle betrifft das Install Tool, da das Passwort im Klartext protokolliert wird, wenn der f\u00fcr das Passwort verwendete Hash-Mechanismus nicht korrekt ist. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T040128",
          "T040127"
        ]
      },
      "release_date": "2025-01-13T23:00:00.000+00:00",
      "title": "CVE-2024-55891"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-55892 (GCVE-0-2024-55892)

CERTFR-2025-AVI-0028

Solutions

CERTFR-2025-AVI-0028

Solutions

FKIE_CVE-2024-55892

GHSA-2FX5-PGGV-6JJR

Problem

Solution

Credits

References

WID-SEC-W-2025-0055

Tags

Sightings

Nomenclature