Lucene search

[email protected]CVE-2014-6231

HistorySep 11, 2014 - 2:16 p.m.

CVE-2014-6231

2014-09-1114:16:04

[email protected]

web.nvd.nist.gov

cve-2014-6231

cwt frontend edit

typo3

remote code execution

unspecified vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.079 Low

EPSS

Percentile

94.3%

JSON

Unspecified vulnerability in the CWT Frontend Edit (cwt_feedit) extension before 1.2.5 for TYPO3 allows remote authenticated users to execute arbitrary code via unknown vectors.

Affected configurations

NVD

Node

cwt_frontend_edit_projectcwt_frontend_editRange≤1.2.4typo3

CPENameOperatorVersion
cwt_frontend_edit_project:cwt_frontend_editcwt frontend edit project cwt frontend editle1.2.4

CPE	Name	Operator	Version
cwt_frontend_edit_project:cwt_frontend_edit	cwt frontend edit project cwt frontend edit	le	1.2.4

References

secunia.com/advisories/60888

typo3.org/extensions/repository/view/cwt_feedit

typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-010

www.securityfocus.com/bid/69562

exchange.xforce.ibmcloud.com/vulnerabilities/95700

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.079 Low

EPSS

Percentile

94.3%

JSON

Related for CVE-2014-6231

nvd1 cvelist1 prion1 typo31