Lucene search
Veracode Vulnerability DatabaseVERACODE:38472HistoryDec 14, 2022 - 7:17 a.m.
Denial Of Service (DoS)
2022-12-1407:17:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
typo3
vulnerability
dos attack
http request validation
application crash
0.001 Low
EPSS
Percentile
36.9%
typo3 is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the lack of http request validation in the PageContentErrorHandler.php which allows an attacker to cause an application crash.
References
github.com/advisories/GHSA-8c28-5mp7-v24h
github.com/TYPO3-CMS/core/commit/1cdabc4d94ccd7b50a4c84445facab342fbb2a44
github.com/TYPO3-CMS/core/commit/b24c8c05cc8c095575116e3346d00387011b94df
github.com/TYPO3/typo3/commit/1e5f44417f031c9c5a9f9d09a6a841cf89aa7b7a
github.com/TYPO3/typo3/commit/73b46b6a627093112cfca4b895a198ca5e1970b7
github.com/TYPO3/typo3/security/advisories/GHSA-8c28-5mp7-v24h
Related
friendsofphp
friendsofphp
TYPO3-CORE-SA-2022-012: Denial of Service in Page Error Handling
2022-12-13 09:18:48
TYPO3-CORE-SA-2022-012: Denial of Service in Page Error Handling
2022-12-13 09:18:48
openvas
openvas
TYPO3 DoS Vulnerability (TYPO3-CORE-SA-2022-012)
2022-12-14 00:00:00
prion
prion
Code injection
2022-12-14 08:15:00
ubuntucve
ubuntucve
CVE-2022-23500
2022-12-14 00:00:00
cvelist
cvelist
osv
osv
CVE-2022-23500
2022-12-14 08:15:09
TYPO3 CMS vulnerable to Denial of Service in Page Error Handling
2022-12-13 17:02:09
BIT-typo3-2022-23500
2024-03-06 11:10:10
cve
cve
CVE-2022-23500
2022-12-14 08:15:09
nvd
nvd
CVE-2022-23500
2022-12-14 08:15:09
github
github
TYPO3 CMS vulnerable to Denial of Service in Page Error Handling
2022-12-13 17:02:09
nessus
nessus
freebsd
freebsd
typo3 -- multiple vulnerabilities
2022-12-13 00:00:00