TYPO3.CMS.Phar.Insecure.Deserialization
Description
This indicates an attack attempt to exploit an Insecure Deserialization Vulnerability in Typo3 CMS.
A remote authenticated attacker can exploit this vulnerability by uploading a specially crafted PHAR file to the target server. Successful exploitation will result in arbitrary code execution within the security context of the user running Typo3 CMS.
Affected Products
TYPO3 Association TYPO3 prior to 7.6.30
TYPO3 Association TYPO3 prior to 8.7.17
TYPO3 Association TYPO3 prior to 9.3.1
Impact
System Compromise: Remote attackers can gain control of vulnerable systems
Recommended Actions
Refer to the vendor's advisory for updates:
https://typo3.org/security/advisory/typo3-core-sa-2018-002/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |