CVE-2019-19849
First published: Tue Dec 17 2019(Updated: )
An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel (Backend Module: DB Check) installed, with a valid backend user who has administrator privileges. The other exploitable scenario requires having the system extension ext:sys_action installed, with a valid backend user who has limited privileges.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| composer/typo3/cms-core | >=10.0.0<10.2.1>=8.0.0<8.7.30>=9.0.0<9.5.12 | |
| composer/typo3/cms | >=10.0.0<10.2.1>=8.0.0<8.7.30>=9.0.0<9.5.12 | |
| Typo3 Typo3 | <8.7.30 | |
| Typo3 Typo3 | >=9.0.0<9.5.12 | |
| Typo3 Typo3 | >=10.0.0<10.2.2 | |
| composer/typo3/cms | >=9.0.0<9.5.12 | 9.5.12 |
| composer/typo3/cms | >=8.0.0<8.7.30 | 8.7.30 |
| composer/typo3/cms | >=10.0.0<10.2.1 | 10.2.1 |
| composer/typo3/cms-core | >=9.0.0<9.5.12 | 9.5.12 |
| composer/typo3/cms-core | >=8.0.0<8.7.30 | 8.7.30 |
| composer/typo3/cms-core | >=10.0.0<10.2.1 | 10.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://typo3.org/security/advisory/typo3-core-sa-2019-026
- https://review.typo3.org/q/%2522Resolves:+%252389005%2522+topic:security
- https://typo3.org/security/advisory/typo3-core-sa-2019-026/
- https://nvd.nist.gov/vuln/detail/CVE-2019-19849
- https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms-core/CVE-2019-19849.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/typo3/cms/CVE-2019-19849.yaml
- https://github.com/advisories/GHSA-rcgc-4xfc-564v (Advisory)
Frequently Asked Questions
What is CVE-2019-19849?
CVE-2019-19849 is a vulnerability in TYPO3 that allows for insecure deserialization in the QueryGenerator and QueryView classes.
Which versions of TYPO3 are affected by CVE-2019-19849?
TYPO3 versions 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2 are affected by CVE-2019-19849.
What is the severity of CVE-2019-19849?
CVE-2019-19849 has a severity score of 8.8, indicating a high severity.
How can I fix CVE-2019-19849?
To fix CVE-2019-19849, update your TYPO3 installation to version 8.7.30, 9.5.12, or 10.2.2.
Where can I find more information about CVE-2019-19849?
You can find more information about CVE-2019-19849 in the Typo3 security advisory TYPO3-CORE-SA-2019-026.
- collector/friends-of-php
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-rcgc-4xfc-564v
- alias/CVE-2019-19849
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- agent/description
- collector/nvd-cve
- source/NVD
- package-manager/composer
- vendor/typo3
- canonical/typo3 typo3
- version/typo3 typo3/9.0.0
- version/typo3 typo3/10.0.0