Lucene search
Veracode Vulnerability DatabaseVERACODE:26019HistoryAug 03, 2020 - 6:29 a.m.
Information Disclosure
2020-08-0306:29:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0.003 Low
EPSS
Percentile
70.7%
typo3/cms-core is vulnerable to information disclosure. An insecure internal verification mechanism can be used to generate arbitrary checksums and allows an attacker to inject arbitrary data having a valid cryptographic message authentication code (HMAC-SHA1), resulting in disclosure of confidential information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| typo3/cms-core | le | 10.4.5 | |
| typo3/cms-core | le | 9.5.19 | |
| typo3/cms-core | le | 10.4.5 | |
| typo3/cms-core | le | 9.5.19 |
Related
ubuntucve
ubuntucve
CVE-2020-15098
2020-07-29 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2020-15098
2020-07-29 17:15:13
friendsofphp
friendsofphp
TYPO3-CORE-SA-2020-008: Sensitive Information Disclosure
2020-07-28 08:18:38
TYPO3-CORE-SA-2020-008: Sensitive Information Disclosure
2020-07-28 08:18:38
veracode
veracode
Insecure Cryptography
2020-07-30 02:33:31
cve
cve
CVE-2020-15098
2020-07-29 17:15:13
prion
prion
Deserialization of untrusted data
2020-07-29 17:15:00
osv
osv
BIT-typo3-2020-15098
2024-03-06 11:11:48
CVE-2020-15098
2020-07-29 17:15:13
freebsd
freebsd
typo3 -- multiple vulnerabilities
2020-07-28 00:00:00
openvas
openvas
nessus
nessus
typo3
typo3
Sensitive Information Disclosure
2020-07-28 00:00:00
github
github