Information Disclosure in TYPO3 Page Tree

🗓️ 08 Oct 2024 14:37:08Reported by GitHub Advisory DatabaseType

Information Disclosure in TYPO3 Page Tree. Backend users could see restricted items in the backend page tree without proper acces

Reporter	Title	Published	Views	Family All 15
Circl	CVE-2024-47780	8 Oct 202421:14	–	circl
CNNVD	TYPO3 安全漏洞	8 Oct 202400:00	–	cnnvd
CVE	CVE-2024-47780	8 Oct 202417:57	–	cve
Cvelist	CVE-2024-47780 Information Disclosure in TYPO3 Page Tree	8 Oct 202417:57	–	cvelist
EUVD	EUVD-2024-3132	3 Oct 202520:07	–	euvd
NVD	CVE-2024-47780	8 Oct 202418:15	–	nvd
OSV	CVE-2024-47780 Information Disclosure in TYPO3 Page Tree	8 Oct 202417:57	–	osv
OSV	GHSA-RF5M-H8Q9-9W6Q Information Disclosure in TYPO3 Page Tree	8 Oct 202414:37	–	osv
RedhatCVE	CVE-2024-47780	23 May 202508:59	–	redhatcve
Snyk	Incorrect Authorization	8 Oct 202418:43	–	snyk

Vulners

Node

typo3 cms-backendRange10.0.0–10.4.46composer

typo3 cms-backendRange11.0.0–11.5.40composer

typo3 cms-backendRange12.0.0–12.4.21composer

typo3 cms-backendRange13.0.0–13.3.1composer

Source	Link
github	www.github.com/TYPO3/typo3/security/advisories/GHSA-rf5m-h8q9-9w6q
github	www.github.com/TYPO3-CMS/backend/commit/8b024b08a2c7071a2f2ff7c758766e4e9273f83c
github	www.github.com/TYPO3-CMS/backend/commit/9ae1ef969b63292a13f80955a95713cabd45cc22
github	www.github.com/TYPO3-CMS/backend/commit/a7b3c924014ada61632cd5e3fb9825fcc86c5719
typo3	www.typo3.org/security/advisory/typo3-core-sa-2024-012
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-47780
github	www.github.com/advisories/GHSA-rf5m-h8q9-9w6q

09 Oct 2024 16:19Current

7.1High risk

Vulners AI Score7.1

CVSS 3.13.1 - 4.3

EPSS0.00262

SSVC