CVE-2012-3529

Published: Sep 5, 2012Modified: Apr 29, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

The configuration module in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to obtain the encryption key via unspecified vectors.

Affected (38)

Products: Typo3: Typo3

Typo3

1 product

Typo3

Configuration A

20 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 4.5.0
Typo3 Typo3	Version 4.5.10
Typo3 Typo3	Version 4.5.11
Typo3 Typo3	Version 4.5.12
Typo3 Typo3	Version 4.5.13
Typo3 Typo3	Version 4.5.14
Typo3 Typo3	Version 4.5.15
Typo3 Typo3	Version 4.5.16
Typo3 Typo3	Version 4.5.17
Typo3 Typo3	Version 4.5.18
Typo3 Typo3	Version 4.5.1
Typo3 Typo3	Version 4.5.2
Typo3 Typo3	Version 4.5.3
Typo3 Typo3	Version 4.5.4
Typo3 Typo3	Version 4.5.5
Typo3 Typo3	Version 4.5.6
Typo3 Typo3	Version 4.5.7
Typo3 Typo3	Version 4.5.8
Typo3 Typo3	Version 4.5.9
Typo3 Typo3	Version 4.5

Configuration B

13 vulnerable

Vulnerable Software	Affected Versions
Typo3 Typo3	Version 4.6.0
Typo3 Typo3	Version 4.6.10
Typo3 Typo3	Version 4.6.11
Typo3 Typo3	Version 4.6.1
Typo3 Typo3	Version 4.6.2
Typo3 Typo3	Version 4.6.3
Typo3 Typo3	Version 4.6.4
Typo3 Typo3	Version 4.6.5
Typo3 Typo3	Version 4.6.6
Typo3 Typo3	Version 4.6.7
Typo3 Typo3	Version 4.6.8
Typo3 Typo3	Version 4.6.9
Typo3 Typo3	Version 4.6