CVE-2024-55920

Summary

CVE-2024-55920 is a vulnerability affecting the TYPO3 Content Management Framework. The issue lies in the backend user interface, where deep links are susceptible to Cross-Site Request Forgery (CSRF) attacks. Malicious URLs can manipulate state-changing actions in downstream components, including the Dashboard Module, by exploiting incorrect handling of HTTP methods. Successful attacks require an active backend session and misconfigured security settings, specifically with the `security.backend.enforceReferrer` feature disabled and `BE/cookieSameSite` set to lax or none. Affected users are urged to update to TYPO3 versions 11.5.42 ELTS, 12.4.25 LTS, and 13.4.3 LTS, as no workarounds have been identified to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.