Missing Required Cryptographic Step Leading to Sensitive Information Disclosure in TYPO3 CMS
CVE-2020-15098

8.8HIGH

Key Information:

Vendor: Typo3
Status: Typo3 Cms
Vendor: CVE Published:; 29 July 2020

What is CVE-2020-15098?

In TYPO3 CMS greater than or equal to 9.0.0 and less than 9.5.20, and greater than or equal to 10.0.0 and less than 10.4.6, it has been discovered that an internal verification mechanism can be used to generate arbitrary checksums. This allows to inject arbitrary data having a valid cryptographic message authentication code (HMAC-SHA1) and can lead to various attack chains including potential privilege escalation, insecure deserialization & remote code execution. The overall severity of this vulnerability is high based on mentioned attack chains and the requirement of having a valid backend user session (authenticated). This has been patched in versions 9.5.20 and 10.4.6.

Affected Version(s)

TYPO3 CMS >= 9.0.0, < 9.5.20 < 9.0.0, 9.5.20

TYPO3 CMS >= 10.0.0, 10.4.6 >= 10.0.0, 10.4.6

References

https://github.com/TYPO3/TYPO3.CMS/security/advisories/GH...

x_refsource_CONFIRM

https://typo3.org/security/advisory/typo3-core-sa-2016-013

x_refsource_MISC

https://typo3.org/security/advisory/typo3-core-sa-2020-008

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 29, 2020
Vulnerability Reserved
Jun 25, 2020

Typo3

What is CVE-2020-15098?

Affected Version(s)

References

CVSS V3.1

Timeline