Lucene search
Veracode Vulnerability DatabaseVERACODE:25990HistoryJul 30, 2020 - 2:33 a.m.
Insecure Cryptography
2020-07-3002:33:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.003 Low
EPSS
Percentile
70.7%
typo3/cms is vulnerable to insecure cryptography. The vulnerability exists because it was possible to generate arbitrary checksums that allows the injection of arbitrary data.
References
github.com/TYPO3/TYPO3.CMS/commit/85d3e70dff35a99ef53f4b561114acfa9e5c47e1
github.com/TYPO3/TYPO3.CMS/commit/d2842eb11a338f69f79f744fa050d475d4c0fda3
github.com/TYPO3/TYPO3.CMS/security/advisories/GHSA-m5vr-3m74-jwxp
typo3.org/security/advisory/typo3-core-sa-2016-013
typo3.org/security/advisory/typo3-core-sa-2020-008
Related
ubuntucve
ubuntucve
CVE-2020-15098
2020-07-29 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2020-15098
2020-07-29 17:15:13
friendsofphp
friendsofphp
TYPO3-CORE-SA-2020-008: Sensitive Information Disclosure
2020-07-28 08:18:38
TYPO3-CORE-SA-2020-008: Sensitive Information Disclosure
2020-07-28 08:18:38
cve
cve
CVE-2020-15098
2020-07-29 17:15:13
prion
prion
Deserialization of untrusted data
2020-07-29 17:15:00
veracode
veracode
Information Disclosure
2020-08-03 06:29:59
osv
osv
BIT-typo3-2020-15098
2024-03-06 11:11:48
CVE-2020-15098
2020-07-29 17:15:13
freebsd
freebsd
typo3 -- multiple vulnerabilities
2020-07-28 00:00:00
nessus
nessus
openvas
openvas
typo3
typo3
Sensitive Information Disclosure
2020-07-28 00:00:00
github
github