Miggo Logo

GHSA-gwfx-p7mr-f92v: Missing Access Check in TYPO3 CMS

9.1

CVSS Score
3.1

Basic Information

CVE ID
-
EPSS Score
-
CWE
-
Published
6/5/2024
Updated
6/5/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
typo3/cmscomposer>= 6.2.0, < 6.2.256.2.25
typo3/cmscomposer>= 7.6.0, < 7.6.87.6.8
typo3/cmscomposer>= 8.0.0, < 8.1.18.1.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability centers on missing access checks in Extbase's request handling. The primary vulnerable function is the Dispatcher::dispatch() method, which directly executes controller actions without authorization in unpatched versions. The FrontendRequestHandler::handleRequest() is also implicated as it initiates the vulnerable request processing flow. These functions would appear in exploitation stack traces as they handle action resolution and execution. The high confidence for Dispatcher::dispatch() aligns with TYPO3's security bulletin describing Extbase's failure to validate() controller/action access during dispatch.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*xt**s* r*qu*st **n*lin* **ils to impl*m*nt * prop*r ****ss ****k *or r*qu*st** *ontroll*r/ **tion *om*in*tions, w*i** m*k*s it possi*l* *or *n *tt**k*r to *x**ut* *r*itr*ry *xt**s* **tions *y *r**tin* * sp**i*l r*qu*st. To su***ss*ully *xploit t*is

Reasoning

T** vuln*r**ility **nt*rs on missin* ****ss ****ks in *xt**s*'s r*qu*st **n*lin*. T** prim*ry vuln*r**l* *un*tion is t** `*isp*t***r::*isp*t**()` m*t*o*, w*i** *ir**tly *x**ut*s *ontroll*r **tions wit*out *ut*oriz*tion in unp*t**** v*rsions. T** `*ro