CVE-2025-47941 – typo3/cms-backend

Package

Manager: composer
Name: typo3/cms-backend
Vulnerable Version: >=12.0.0 <12.4.31 || >=13.0.0 <13.4.12

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

EPSS: 0.00096 pctl0.27629

Details

The TYPO3 CMS Backend has Broken Authentication in Backend MFA ### Problem The multifactor authentication (MFA) dialog presented during backend login can be bypassed due to insufficient enforcement of access restrictions on all backend routes. Successful exploitation requires valid backend user credentials, as MFA can only be bypassed after successful authentication. ### Solution Update to TYPO3 versions 12.4.31 LTS, 13.4.12 LTS that fix the problem described. ### Credits Thanks to Jens Jacobsen and Y. Kahveci for reporting this issue, and to TYPO3 security team member Torben Hansen for fixing it.

Metadata

Created: 2025-05-20T19:39:37Z
Modified: 2025-05-20T19:39:37Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/05/GHSA-744g-7qm9-hjh9/GHSA-744g-7qm9-hjh9.json
CWE IDs: ["CWE-288"]
Alternative ID: GHSA-744g-7qm9-hjh9
Finding: F006
Auto approve: 1