SB2021100717 - Multiple vulnerabilities in TYPO3
Published: October 7, 2021
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Cross-site request forgery (CVE-ID: CVE-2021-41113)
The vulnerability allows a remote attacker to perform cross-site request forgery attacks.
The vulnerability exists due to insufficient validation of the HTTP request origin within the "Same-Site cookie settings" in "$GLOBALS[TYPO3_CONF_VARS][BE][cookieSameSite]" . A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website.
2) Input validation error (CVE-ID: CVE-2021-41114)
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to insufficient validation of user-supplied input in the HTTP Host header. A remote attacker can cause unspecified impact via a crafted HTTP Host header, related to "Host Spoofing."
Remediation
Install update from vendor's website.
References
- https://github.com/TYPO3/typo3/commit/fa51999203c5e5d913ecae5ea843ccb2b95fa33f
- https://github.com/TYPO3/typo3/security/advisories/GHSA-657m-v5vm-f6rw
- https://typo3.org/security/advisory/typo3-core-sa-2020-006
- https://github.com/TYPO3/typo3/security/advisories/GHSA-m2jh-fxw4-gphm
- https://github.com/TYPO3/typo3/commit/5cbff85506cebe343e5ae59228977547cf8e3cf4
- https://typo3.org/security/advisory/typo3-core-sa-2021-015