Denial of Service (DoS) attack possibility in TYPO3 component Indexed Search

2024-06-0415:13:20

CWE-400

GitHub Advisory Database

github.com

denial of service

typo3

indexed search

vulnerability

software

7 High

AI Score

Confidence

High

Due to an oversized maximum result limit, TYPO3 component Indexed Search is susceptible to a Denial of Service attack.

Affected configurations

Vulners

Node

typo3cms_poll_system_extensionRange<7.6.4

typo3cms_poll_system_extensionRange<6.2.19

CPENameOperatorVersion
typo3/cmslt7.6.4
typo3/cmslt6.2.19

CPE	Name	Operator	Version
	typo3/cms	lt	7.6.4
	typo3/cms	lt	6.2.19

github.com/advisories/GHSA-pmxp-7224-h794

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/2016-02-23-4.yaml

typo3.org/security/advisory/typo3-core-sa-2016-008

7 High

AI Score

Confidence

High