2 matches found
CVE-2014-3944
The Authentication component in TYPO3 6.2.0 before 6.2.3 does not properly invalidate timed out user sessions, which allows remote attackers to bypass authentication via unspecified vectors...
CVE-2014-3944
CVE-2014-3944 affects TYPO3 CMS versions 6.2.0–6.2.2 (up to 6.2.3 fixed) where the Authentication component fails to invalidate timed-out sessions, enabling remote attackers to bypass authentication via unspecified vectors. Impact is authentication bypass; remediation is to upgrade to TYPO3 6.2.3...