Lucene search
PRIOn knowledge basePRION:CVE-2012-1605HistorySep 04, 2012 - 8:55 p.m.
Design/Logic Flaw
2012-09-0420:55:00
PRIOn knowledge base
www.prio-n.com
8.2 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.5%
The Extbase Framework in TYPO3 4.6.x through 4.6.6, 4.7, and 6.0 unserializes untrusted data, which allows remote attackers to unserialize arbitrary objects and possibly execute arbitrary code via vectors related to “a missing signature (HMAC) for a request argument.”
Related
ubuntucve
ubuntucve
CVE-2012-1605
2012-09-04 00:00:00
openvas
openvas
TYPO3 Extbase HMAC Unserialization Weakness
2014-01-02 00:00:00
github
github
Typo3 Extbase Framework Unsafe Deserialization
2022-05-17 05:23:50
cve
cve
CVE-2012-1605
2012-09-04 20:55:00
cvelist
cvelist
CVE-2012-1605
2022-10-03 16:15:26
osv
osv
Typo3 Extbase Framework Unsafe Deserialization
2022-05-17 05:23:50
typo3
typo3
Several Vulnerabilities in TYPO3 Core
2012-03-28 00:00:00
8.2 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.5%
Related for PRION:CVE-2012-1605