typo3 Security fix for Flow Swift Mailer package

2024-06-0520:47:53

GitHub Advisory Database

github.com

typo3

security fix

swift mailer

remote code execution

vulnerability

upgrade

software

8.1 High

AI Score

Confidence

Low

JSON

A remote code execution vulnerability has been found in the Swift Mailer library (swiftmailer/swiftmailer) recently. See this advisory for details. If you are not using the default mail() transport, this particular problem does not affect you. Upgrading is of course still recommended!

Affected configurations

Vulners

Node

typo3mediaceRange<5.4.5typo3

typo3mediaceRange<4.1.99typo3

CPENameOperatorVersion
typo3/swiftmailerlt5.4.5
typo3/swiftmailerlt4.1.99

CPE	Name	Operator	Version
	typo3/swiftmailer	lt	5.4.5
	typo3/swiftmailer	lt	4.1.99

References

github.com/advisories/GHSA-xjw3-5r5c-m5ph

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/swiftmailer/2017-01-06.yaml

www.neos.io/blog/flow-sa-2017-01.html

8.1 High

AI Score

Confidence

Low

JSON