PT-2020-12528 · Typo3 · Typo3/Cms
Oliver Hader
·
Published
2020-05-13
·
Updated
2024-03-06
·
CVE-2020-11067
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TYPO3 CMS versions 9.0.0 through 9.5.16
TYPO3 CMS versions 10.0.0 through 10.4.1
Description
The backend user settings in
$BE USER->uc are vulnerable to insecure deserialization. This vulnerability can lead to remote code execution when combined with vulnerabilities in third-party components. A valid backend user account is required to exploit this issue.Recommendations
For TYPO3 CMS versions 9.0.0 through 9.5.16, update to version 9.5.17.
For TYPO3 CMS versions 10.0.0 through 10.4.1, update to version 10.4.2.
Exploit
Fix
RCE
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Typo3/Cms