CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
82.5%
The frontend rendering component in TYPO3 4.5.x before 4.5.39, 4.6.x
through 6.2.x before 6.2.9, and 7.x before 7.0.2, when
config.prefixLocalAnchors is set to all or cached, allows remote attackers
to have an unspecified impact (possibly resource consumption) via a “Cache
Poisoning” attack using a URL with arbitrary arguments, which triggers a
reload of the page.