Lucene search
HistoryOct 22, 2014 - 2:55 p.m.
CVE-2014-8325
typo3
calendar base
extension
cve-2014-8325
denial of service
vulnerability
php
pcre
nvd
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.9 Medium
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.5%
The Calendar Base (cal) extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service (resource consumption) via vectors related to the PHP PCRE library.
Affected configurations
Node
calender_base_projectcalender_baseRange≤1.5.8typo3
ORcalender_base_projectcalender_baseMatch1.5.0typo3
ORcalender_base_projectcalender_baseMatch1.5.1typo3
ORcalender_base_projectcalender_baseMatch1.5.2typo3
ORcalender_base_projectcalender_baseMatch1.5.3typo3
ORcalender_base_projectcalender_baseMatch1.5.4typo3
ORcalender_base_projectcalender_baseMatch1.5.5typo3
ORcalender_base_projectcalender_baseMatch1.5.6typo3
ORcalender_base_projectcalender_baseMatch1.5.7typo3
ORcalender_base_projectcalender_baseMatch1.6.0typo3
Related
nvd
nvd
CVE-2014-8325
2014-10-22 14:55:08
typo3
typo3
Denial of Service vulnerability in extension Calendar Base (cal)
2014-10-17 00:00:00
cvelist
cvelist
CVE-2014-8325
2014-10-22 14:00:00
prion
prion
Code injection
2014-10-22 14:55:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.9 Medium
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.5%
Related for CVE-2014-8325