Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-WWJW-R3GJ-39FQ
HistoryJun 17, 2022 - 8:57 p.m.

Insufficient Session Expiration in TYPO3's Admin Tool

2022-06-1720:57:27
CWE-613
GitHub Advisory Database
github.com
16

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

59.9%

JSON

> ### Meta
> * CVSS: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L/E:F/RL:O/RC:C (5.6)

Problem

Admin Tool sessions initiated via the TYPO3 backend user interface have not been revoked even if the corresponding user account was degraded to lower permissions or disabled completely. This way, sessions in the admin tool theoretically could have been prolonged without any limit.

Solution

Update to TYPO3 versions 9.5.35 ELTS, 10.4.29, 11.5.11 that fix the problem described above.

Credits

Thanks to Kien Hoang who reported this issue and to TYPO3 framework merger Ralf Zimmermann and TYPO3 security member Oliver Hader who fixed the issue.

References

Affected configurations

Vulners
Node
typo3cms_poll_system_extensionRange<11.5.11
OR
typo3cms_poll_system_extensionRange<10.4.29
OR
typo3cms_poll_system_extensionRange<11.5.11
OR
typo3cms_poll_system_extensionRange<10.4.29
OR
typo3cms_poll_system_extensionRange<9.5.35

Related

friendsofphp 2
cve 1
openvas 1
nvd 1
veracode 1
osv 3
prion 1
cvelist 1
friendsofphp
friendsofphp
TYPO3-CORE-SA-2022-005: Insufficient Session Expiration in Admin Tool
2022-06-14 07:11:53
TYPO3-CORE-SA-2022-005: Insufficient Session Expiration in Admin Tool
2022-06-14 07:11:53
cve
cve
CVE-2022-31050
2022-06-14 21:15:16
openvas
openvas
TYPO3 Session Expiration Vulnerability (TYPO3-CORE-SA-2022-005)
2022-06-15 00:00:00
nvd
nvd
CVE-2022-31050
2022-06-14 21:15:16
veracode
veracode
Session Fixation
2022-06-20 07:29:33
osv
osv
Insufficient Session Expiration in TYPO3's Admin Tool
2022-06-17 20:57:27
BIT-typo3-2022-31050
2024-03-06 11:09:14
CVE-2022-31050
2022-06-14 21:15:16
prion
prion
Design/Logic Flaw
2022-06-14 21:15:00
cvelist
cvelist
CVE-2022-31050 Insufficient Session Expiration in TYPO3 Admin Tool
2022-06-14 20:55:11

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

59.9%

JSON
Related for GHSA-WWJW-R3GJ-39FQ
friendsofphp2cve1openvas1nvd1veracode1osv3prion1cvelist1