Name of the Vulnerable Software and Affected Versions TYPO3 CMS (affected versions not specified)

Description The issue affects all XML processing within the TYPO3 CMS, making it vulnerable to XML External Entity (XXE) processing. This allows an attacker to load internal and/or external file content within an XML structure. Additionally, it is possible to inject arbitrary files, which can lead to an XML Denial of Service attack.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.