CVE-2020-11066

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-11066

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11066.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-11066

Aliases

Related

GHSA-2rxh-h6h9-qrqc

Published

2020-05-14T00:15:11.310Z

Modified

2026-02-03T07:09:00.048057Z

Severity

10.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H CVSS Calculator

Summary

[none]

Details

In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.17 and greater than or equal to 10.0.0 and less than 10.4.2, calling unserialize() on malicious user-submitted content can lead to modification of dynamically-determined object attributes and result in triggering deletion of an arbitrary directory in the file system, if it is writable for the web server. It can also trigger message submission via email using the identity of the web site (mail relay). Another insecure deserialization vulnerability is required to actually exploit mentioned aspects. This has been fixed in 9.5.17 and 10.4.2.

References

https://github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-2rxh-h6h9-qrqc

Affected packages

Git / github.com/typo3/typo3.cms

Affected ranges

Type: GIT
Repo: https://github.com/typo3/typo3.cms
Events: Introduced

41235ff8e38c6f3401df03ae8beddd62d662c525

Fixed

33a59bca3098ac08b262929fc9e4087dd44572cb

Introduced

c91b70e450c52d29ffb08115fffbb7832b15a330

Fixed

cf17e40087cd21faa6f9a12683631744d36f3f46

Affected versions

v10.*

v10.0.0

v10.1.0

v10.2.0

v10.3.0

v10.4.0

v10.4.1

v9.*

v9.0.0

v9.1.0

v9.2.0

v9.3.0

v9.4.0

v9.5.0

v9.5.1

v9.5.10

v9.5.11

v9.5.12

v9.5.13

v9.5.14

v9.5.15

v9.5.16

v9.5.2

v9.5.3

v9.5.4

v9.5.5

v9.5.6

v9.5.7

v9.5.8

v9.5.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-11066.json"