CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
78.1%
The News (tt_news) extension before 3.5.2 for TYPO3 allows remote attackers to have unspecified impact via vectors related to an “insecure unserialize” issue.
Vendor | Product | Version | CPE |
---|---|---|---|
news_project | news | * | cpe:2.3:a:news_project:news:*:*:*:*:*:typo3:*:* |
news_project | news | 3.0.0 | cpe:2.3:a:news_project:news:3.0.0:*:*:*:*:typo3:*:* |
news_project | news | 3.0.1 | cpe:2.3:a:news_project:news:3.0.1:*:*:*:*:typo3:*:* |
news_project | news | 3.1.0 | cpe:2.3:a:news_project:news:3.1.0:*:*:*:*:typo3:*:* |
news_project | news | 3.2.0 | cpe:2.3:a:news_project:news:3.2.0:*:*:*:*:typo3:*:* |
news_project | news | 3.2.1 | cpe:2.3:a:news_project:news:3.2.1:*:*:*:*:typo3:*:* |
news_project | news | 3.4.0 | cpe:2.3:a:news_project:news:3.4.0:*:*:*:*:typo3:*:* |
news_project | news | 3.5.0 | cpe:2.3:a:news_project:news:3.5.0:*:*:*:*:typo3:*:* |