CNNVD-202509-1415 Information

CNNVD ID

CNNVD-202509-1415

Related CVE

CVE-2025-59015

• CNNVD Published: 2025-09-09

Description (Chinese)

TYPO3 CMS是TYPO3开源的一个内容管理系统。 TYPO3 CMS 12.4.36及之前版本和13.4.17及之前版本存在安全漏洞，该漏洞源于密码生成组件熵不足，可能导致暴力破解攻击。

Description (English)

TYPO3 CMS is a TYPO3 open source content management system. TYPO3 CMS 12.4.36 There is a security loophole in previous and 13.4.17 and earlier versions, which stems from the lack of entropy in code-generated components, which may lead to violent deciphering attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

TYPO3

Published

2025-09-09

Last Modified

2026-02-24

References

https://typo3.org/security/advisory/typo3-core-sa-2025-019 https://vigilance.fr/vulnerability/TYPO3-Core-user-access-via-Password-Generation-Insufficient-Entropy-48163

Patch

https://get.typo3.org/