Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:composer/typo3/cms@11.5.25
Typecomposer
Namespacetypo3
Namecms
Version11.5.25
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version12.2.0
Latest_non_vulnerable_version12.2.0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-4hsv-y3rz-e3a2
vulnerability_id VCID-4hsv-y3rz-e3a2
summary 
Path Traversal in TYPO3 File Abstraction Layer Storages
### Problem
Configurable storages using the local driver of the File Abstraction Layer (FAL) could be configured to access directories outside of the root directory of the corresponding project. The system setting in `BE/lockRootPath` was not evaluated by the file abstraction layer component. An administrator-level backend user account is required to exploit this vulnerability.

### Solution
Update to TYPO3 versions 8.7.57 ELTS, 9.5.46 ELTS, 10.4.43 ELTS, 11.5.35 LTS, 12.4.11 LTS, 13.0.1 that fix the problem described.

#### ℹ️ **Strong security defaults - Manual actions required**

_see [Important: #102800 changelog](https://docs.typo3.org/c/typo3/cms-core/main/en-us/Changelog/11.5.x/Important-102800-FileAbstractionLayerEnforcesAbsolutePathsToMatchProjectRootOrLockRootPath.html)_

Assuming that a web project is located in the directory `/var/www/example.org` (the "project root path" for Composer-based projects) and the publicly accessible directory is located at `/var/www/example.org/public` (the "public root path"), accessing resources via the File Abstraction Layer component is limited to the mentioned directories.

To grant additional access to directories, they must be explicitly configured in the system settings of `$GLOBALS['TYPO3_CONF_VARS']['BE']['lockRootPath']` - either using the Install Tool or according to deployment techniques. The existing setting has been extended to support multiple directories configured as an array of strings.

Example:
```php
$GLOBALS['TYPO3_CONF_VARS']['BE']['lockRootPath'] = [
  ‘/var/shared/documents/’,
  ‘/var/shared/images/’,
];
```

❗ **Storages that reference directories not explicitly granted will be marked as "offline" internally - no resources can be used in the website's frontend and backend context.**

### Credits
Thanks to TYPO3 core & security team members Oliver Hader and Benjamin Franzke who fixed the issue.

### References
* [TYPO3-CORE-SA-2024-001](https://typo3.org/security/advisory/typo3-core-sa-2024-001)
references
0
reference_url http://packetstormsecurity.com/files/176274/TYPO3-11.5.24-Path-Traversal.html
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/176274/TYPO3-11.5.24-Path-Traversal.html
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30451
reference_id
reference_type
scores
0
value 0.00403
scoring_system epss
scoring_elements 0.60901
published_at 2026-04-13T12:55:00Z
1
value 0.00403
scoring_system epss
scoring_elements 0.6092
published_at 2026-04-12T12:55:00Z
2
value 0.00403
scoring_system epss
scoring_elements 0.60933
published_at 2026-04-21T12:55:00Z
3
value 0.00403
scoring_system epss
scoring_elements 0.60912
published_at 2026-04-09T12:55:00Z
4
value 0.00403
scoring_system epss
scoring_elements 0.60896
published_at 2026-04-08T12:55:00Z
5
value 0.00403
scoring_system epss
scoring_elements 0.60883
published_at 2026-04-04T12:55:00Z
6
value 0.00403
scoring_system epss
scoring_elements 0.60854
published_at 2026-04-02T12:55:00Z
7
value 0.00403
scoring_system epss
scoring_elements 0.60847
published_at 2026-04-07T12:55:00Z
8
value 0.00403
scoring_system epss
scoring_elements 0.60948
published_at 2026-04-18T12:55:00Z
9
value 0.00403
scoring_system epss
scoring_elements 0.60943
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30451
2
reference_url https://github.com/TYPO3-CMS/core
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3-CMS/core
3
reference_url https://github.com/TYPO3/typo3
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3
4
reference_url https://github.com/TYPO3/typo3/commit/205115cca3d67594a12d0195c937da0e51eb494a
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/205115cca3d67594a12d0195c937da0e51eb494a
5
reference_url https://github.com/TYPO3/typo3/commit/78fb9287a2f0487c39288070cb0493a5265f1789
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/78fb9287a2f0487c39288070cb0493a5265f1789
6
reference_url https://github.com/TYPO3/typo3/commit/accf537c7379b4359bc0f957c4d0c07baddd710a
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/commit/accf537c7379b4359bc0f957c4d0c07baddd710a
7
reference_url https://github.com/TYPO3/typo3/security/advisories/GHSA-w6x2-jg8h-p6mp
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/TYPO3/typo3/security/advisories/GHSA-w6x2-jg8h-p6mp
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-30451
reference_id
reference_type
scores
0
value 4.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
1
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-30451
9
reference_url https://typo3.org/security/advisory/typo3-core-sa-2024-001
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://typo3.org/security/advisory/typo3-core-sa-2024-001
10
reference_url https://github.com/advisories/GHSA-3gjc-mp82-fj4q
reference_id GHSA-3gjc-mp82-fj4q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3gjc-mp82-fj4q
11
reference_url https://github.com/advisories/GHSA-w6x2-jg8h-p6mp
reference_id GHSA-w6x2-jg8h-p6mp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-w6x2-jg8h-p6mp
fixed_packages
0
url pkg:composer/typo3/cms@11.5.25
purl pkg:composer/typo3/cms@11.5.25
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.25
aliases CVE-2023-30451, GHSA-3gjc-mp82-fj4q, GHSA-w6x2-jg8h-p6mp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4hsv-y3rz-e3a2
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:composer/typo3/cms@11.5.25