CVE-2024-25120
Improper Access Control of Resources Referenced by t3:// URI Scheme in TYPO3
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
TYPO3 is an open source PHP based web content management system released under the GNU GPL. The TYPO3-specific `t3://` URI scheme could be used to access resources outside of the users' permission scope. This encompassed files, folders, pages, and records (although only if a valid link-handling configuration was provided). Exploiting this vulnerability requires a valid backend user account. Users are advised to update to TYPO3 versions 8.7.57 ELTS, 9.5.46 ELTS, 10.4.43 ELTS, 11.5.35 LTS, 12.4.11 LTS, 13.0.1 that fix the problem described. There are no known workarounds for this issue.
TYPO3 es un sistema de gestión de contenido web basado en PHP de código abierto publicado bajo GNU GPL. El esquema de URI `t3://` específico de TYPO3 podría usarse para acceder a recursos fuera del alcance del permiso de los usuarios. Esto abarcaba archivos, carpetas, páginas y registros (aunque sólo si se proporcionaba una configuración válida de manejo de enlaces). Para explotar esta vulnerabilidad se requiere una cuenta de usuario backend válida. Se recomienda a los usuarios actualizar a las versiones 8.7.57 ELTS, 9.5.46 ELTS, 10.4.43 ELTS, 11.5.35 LTS, 12.4.11 LTS, 13.0.1 de TYPO3 que solucionan el problema descrito. No se conocen workarounds para este problema.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-02-05 CVE Reserved
- 2024-02-13 CVE Published
- 2024-08-01 CVE Updated
- 2024-10-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-284: Improper Access Control
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
https://docs.typo3.org/m/typo3/reference-typoscript/main/en-us/Functions/Typolink.html#resource-references | X_refsource_misc | |
https://github.com/TYPO3/typo3/security/advisories/GHSA-wf85-8hx9-gj7c | X_refsource_confirm | |
https://typo3.org/security/advisory/typo3-core-sa-2024-005 | X_refsource_misc |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
TYPO3 Search vendor "TYPO3" | Typo3 Search vendor "TYPO3" for product "Typo3" | >= 13.0.0 < 13.0.1 Search vendor "TYPO3" for product "Typo3" and version " >= 13.0.0 < 13.0.1" | en |
Affected
| ||||||
TYPO3 Search vendor "TYPO3" | Typo3 Search vendor "TYPO3" for product "Typo3" | >= 12.0.0 < 12.4.11 Search vendor "TYPO3" for product "Typo3" and version " >= 12.0.0 < 12.4.11" | en |
Affected
| ||||||
TYPO3 Search vendor "TYPO3" | Typo3 Search vendor "TYPO3" for product "Typo3" | >= 11.0.0 < 11.5.35 Search vendor "TYPO3" for product "Typo3" and version " >= 11.0.0 < 11.5.35" | en |
Affected
| ||||||
TYPO3 Search vendor "TYPO3" | Typo3 Search vendor "TYPO3" for product "Typo3" | >= 10.0.0 < 10.4.43 Search vendor "TYPO3" for product "Typo3" and version " >= 10.0.0 < 10.4.43" | en |
Affected
| ||||||
TYPO3 Search vendor "TYPO3" | Typo3 Search vendor "TYPO3" for product "Typo3" | >= 9.0.0 < 9.5.46 Search vendor "TYPO3" for product "Typo3" and version " >= 9.0.0 < 9.5.46" | en |
Affected
| ||||||
TYPO3 Search vendor "TYPO3" | Typo3 Search vendor "TYPO3" for product "Typo3" | >= 8.0.0 < 8.7.57 Search vendor "TYPO3" for product "Typo3" and version " >= 8.0.0 < 8.7.57" | en |
Affected
|