CVE-2024-34537
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-34537
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-34537.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-34537
- Aliases
- Published
- 2024-10-28T14:15:04Z
- Modified
- 2025-11-09T06:09:54.541636Z
- Severity
-
- 4.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
TYPO3 before 13.3.1 allows denial of service (interface error) in the Bookmark Toolbar (ext:backend), exploitable by an administrator-level backend user account via manipulated data saved in the bookmark toolbar of the backend user interface. The fixed versions are 10.4.46 ELTS, 11.5.40 LTS, 12.4.21 LTS, and 13.3.1.
- References
Affected packages
Git / github.com/typo3/typo3
Git / github.com/typo3/typo3.cms
Affected versions
v11.*
v11.0.0
v11.1.0
v11.2.0
v11.3.0
v11.4.0
v11.5.0
v11.5.1
v11.5.10
v11.5.11
v11.5.12
v11.5.13
v11.5.14
v11.5.15
v11.5.16
v11.5.17
v11.5.18
v11.5.19
v11.5.2
v11.5.20
v11.5.21
v11.5.22
v11.5.23
v11.5.24
v11.5.25
v11.5.26
v11.5.27
v11.5.28
v11.5.29
v11.5.3
v11.5.30
v11.5.31
v11.5.32
v11.5.33
v11.5.34
v11.5.35
v11.5.36
v11.5.37
v11.5.38
v11.5.39
v11.5.4
v11.5.5
v11.5.6
v11.5.7
v11.5.8
v11.5.9