Description

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel (Backend Module: DB Check) installed, with a valid backend user who has administrator privileges. The other exploitable scenario requires having the system extension ext:sys_action installed, with a valid backend user who has limited privileges.

Remediation

References

CVE-2019-19849

Related Vulnerabilities

Artifactory Missing Authorization Vulnerability (CVE-2019-10322)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3843)

WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.9)

MySQL CVE-2021-2030 Vulnerability (CVE-2021-2030)

PHP Improper Input Validation Vulnerability (CVE-2010-3870)

Severity

High

Classification

CVE-2019-19849 CWE-502 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities