CVE-2020-11063
published 2020-05-13CVE-2020-11063: In TYPO3 CMS versions 10.4.0 and 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users…
PriorityP415low3.7CVSS 3.1
AVNACHPRNUINSUCLINAN
EPSS
1.19%
64.0th percentile
In TYPO3 CMS versions 10.4.0 and 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an attacker to mount user enumeration based on email addresses assigned to backend user accounts. This has been fixed in 10.4.2.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| typo3 | cms | >= 10.0.0 < 10.4.2 | 10.4.2 |
| typo3 | cms-core | >= 10.0.0 < 10.4.2 | 10.4.2 |
| typo3 | typo3 | — | — |
| typo3 | typo3 | — | — |
| typo3 | typo3_cms | — | — |
CVSS provenance
nvdv3.13.7LOWCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Information Disclosure in Password Reset
ghsa·2020-05-13
CVE-2020-11063 [LOW] CWE-203 Information Disclosure in Password Reset
Information Disclosure in Password Reset
In TYPO3 CMS 10.4.0 through 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an attacker to mount user enumeration based on email addresses assigned to backend user accounts.
This has been fixed in 10.4.2.
### References
* https://typo3.org/security/advisory/typo3-core-sa-2020-001
OSV
Information Disclosure in Password Reset
osv·2020-05-13
CVE-2020-11063 [LOW] Information Disclosure in Password Reset
Information Disclosure in Password Reset
In TYPO3 CMS 10.4.0 through 10.4.1, it has been discovered that time-based attacks can be used with the password reset functionality for backend users. This allows an attacker to mount user enumeration based on email addresses assigned to backend user accounts.
This has been fixed in 10.4.2.
### References
* https://typo3.org/security/advisory/typo3-core-sa-2020-001
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2020-05-13
Published