CVE-2019-19848

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the extraction of manually uploaded ZIP archives in Extension Manager is vulnerable to directory traversal. Admin privileges are required in order to exploit this vulnerability. (In v9 LTS and later, System Maintainer privileges are also required.)
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
mitreCNA
6.8 MEDIUM
NETWORK
LOW
HIGH
CVSS:3.0/AC:L/AV:N/A:H/C:H/I:H/PR:H/S:U/UI:R
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
VendorProductVersion
typo3typo3
𝑥
< 8.7.30
typo3typo3
9.0.0 ≤
𝑥
< 9.5.12
typo3typo3
10.0.0 ≤
𝑥
< 10.2.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://review.typo3.org/q/%2522Resolves:+%252388764%2522+topic:security
https://typo3.org/security/advisory/typo3-core-sa-2019-024/
https://review.typo3.org/q/%2522Resolves:+%252388764%2522+topic:security
https://typo3.org/security/advisory/typo3-core-sa-2019-024/