4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
53.1%
The (old) Form Content Element component in TYPO3 4.5.0 through 4.5.31,
4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows
remote authenticated editors to generate arbitrary HMAC signatures and
bypass intended access restrictions via unspecified vectors.