CVE-2024-34358

Name of the Vulnerable Software and Affected Versions TYPO3 versions prior to 9.5.48 ELTS TYPO3 versions prior to 10.4.45 ELTS TYPO3 versions prior to 11.5.37 LTS TYPO3 versions prior to 12.4.15 LTS TYPO3 versions prior to 13.1.1

Description The ShowImageController (eID tx cms showpic) lacks a cryptographic HMAC-signature on the frame HTTP query parameter, for example, /index.php?eID=tx cms showpic?file=3&...&frame=12345. This allows adversaries to instruct the system to produce an arbitrary number of thumbnail images on the server side.

Recommendations Update to TYPO3 version 9.5.48 ELTS or later. Update to TYPO3 version 10.4.45 ELTS or later. Update to TYPO3 version 11.5.37 LTS or later. Update to TYPO3 version 12.4.15 LTS or later. Update to TYPO3 version 13.1.1 or later. As a temporary workaround, consider ignoring the frame HTTP query parameter in the ShowImageController until a patch is available. The new feature flag security.frontend.allowInsecureFrameOptionInShowImageController can be used to reactivate the previous behavior, but it is disabled by default.