Lucene search

CVE-2021-21339

🗓️ 23 Mar 2021 02:12:15Reported by [email protected]Type

TYPO3 stores user session identifiers in cleartext before versions 6.2.57, 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
OSV	Cleartext storage of session identifier	23 Mar 202101:53	–	osv
OSV	CVE-2021-21339	23 Mar 202102:15	–	osv
OSV	BIT-typo3-2021-21339	6 Mar 202411:11	–	osv
CVE	CVE-2021-21339	23 Mar 202102:15	–	cve
Typo3	Cleartext storage of session identifier	16 Mar 202100:00	–	typo3
Friends Of PHP	TYPO3-CORE-SA-2021-006: Cleartext storage of session identifier	16 Mar 202108:58	–	friendsofphp
Friends Of PHP	TYPO3-CORE-SA-2021-006: Cleartext storage of session identifier	16 Mar 202108:58	–	friendsofphp
Veracode	Information Disclosure	24 Mar 202105:08	–	veracode
CNVD	TYPO3 Information Disclosure Vulnerability (CNVD-2021-26146)	17 Mar 202100:00	–	cnvd
Prion	Sql injection	23 Mar 202102:15	–	prion

Nvd

Node

typo3 typo3Range6.2.0–6.2.57

typo3 typo3Range7.0.0–7.6.51

typo3 typo3Range8.0.0–8.7.40

typo3 typo3Range9.0.0–9.5.25

typo3 typo3Range10.0.0–10.4.14

typo3 typo3Range11.0.0–11.1.1

Source	Link
github	www.github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-qx3w-4864-94ch
typo3	www.typo3.org/security/advisory/typo3-core-sa-2021-006
packagist	www.packagist.org/packages/typo3/cms-core

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Mar 2021 02:15Current

CVSS25

CVSS37.5

EPSS0.00132

CWE-312