Denial of Service Vulnerability in TYPO3 Bookmark Toolbar (ext:backend)
CVE-2024-34537

Currently unrated

Key Information:

Vendor: TYPO3
Vendor: CVE Published:; 28 October 2024

What is CVE-2024-34537?

TYPO3 before 13.3.1 allows denial of service (interface error) in the Bookmark Toolbar (ext:backend), exploitable by an administrator-level backend user account via manipulated data saved in the bookmark toolbar of the backend user interface. The fixed versions are 10.4.46 ELTS, 11.5.40 LTS, 12.4.21 LTS, and 13.3.1.

References

https://github.com/TYPO3/typo3/security/advisories/GHSA-f...

https://typo3.org/security/advisory/typo3-core-sa-2024-011

https://www.mgm-sp.com/cve/denial-of-service-in-typo3-boo...

Timeline

Vulnerability published
Oct 28, 2024
Vulnerability Reserved
May 6, 2024