216.73.217.50

CVE-2026-47351

· Published 09/06/2026 11:16 · Modified 09/06/2026 13:46

Labels: CVE-2026-47351 2026-06-09CVE-2026-47351CWE-200f4fb688c-4412-4426-b4b8-421ecf27b14a

Essential information

Published
09/06/2026 11:16
Modified
09/06/2026 13:46
Author
Creator
CVSS
5.3 MEDIUM (v3) 5.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Backend users were able to insert arbitrary records and files into the TYPO3 clipboard without proper read permission checks, which allowed users to gather information about records and files they were not authorized to view. This issue affects TYPO3 CMS versions 10.4.0-13.4.30 and 14.0.0-14.3.2.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
f4fb688c-4412-4426-b4b8-421ecf27b14a
NVD
View on NVD

Affected products (CPE)

ProductCPE
typo3 / typo3 cms cpe:2.3:a:typo3:typo3_cms:10.4.0-13.4.30:*:*:*:*:*:*:*
typo3 / typo3 cms cpe:2.3:a:typo3:typo3_cms:14.0.0-14.3.2:*:*:*:*:*:*:*

References