Description
In TYPO3 CMS 9.0.0 through 9.5.16 and 10.0.0 through 10.4.1, it has been discovered that backend user settings (in $BE_USER->uc) are vulnerable to insecure deserialization. In combination with vulnerabilities of third party components, this can lead to remote code execution. A valid backend user account is needed to exploit this vulnerability. This has been fixed in 9.5.17 and 10.4.2.
Remediation
References
Related Vulnerabilities
e107 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-1989)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17301)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2081)
WordPress Plugin MiwoEvents-Manage & Book Events Unspecified Vulnerability (1.2.0)
WordPress Plugin WP Helper Premium Cross-Site Scripting (4.2)