typo3/cms-core is vulnerable to Information Disclosure The vulnerability is due to improper session termination, where session data of authenticated users is transformed into an anonymous user session during the logout process, allowing subsequent users of the same client application to access previous session data.