Authentication Bypass in TYPO3 CMS

2024-06-0514:17:20

CWE-287

GitHub Advisory Database

github.com

typo3

authentication

bypass

password

validation

backend

frontend

users

7.4 High

AI Score

Confidence

Low

JSON

The default authentication service misses to invalidate empty strings as password. Therefore it is possible to authenticate backend and frontend users without password set in the database.
Note: TYPO3 does not allow to create user accounts without a password. Your TYPO3 installation might only be affected if there is a third party component creating user accounts without password by directly manipulating the database.

Affected configurations

Vulners

Node

typo3cms_poll_system_extensionRange<8.0.1

typo3cms_poll_system_extensionRange<7.6.5

typo3cms_poll_system_extensionRange<6.2.20

CPENameOperatorVersion
typo3/cmslt8.0.1
typo3/cmslt7.6.5
typo3/cmslt6.2.20

Name	Operator	Version
typo3/cms	lt	8.0.1
typo3/cms	lt	7.6.5
typo3/cms	lt	6.2.20

References

github.com/advisories/GHSA-6xh8-8pfv-53vx

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-04-12-3.yaml

typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-011

7.4 High

AI Score

Confidence

Low

JSON