CVE-2025-47940: TYPO3 Allows Privilege Escalation to System Maintainer

May 20, 2025

Problem

Administrator-level backend users without system maintainer privileges can escalate their privileges and gain system maintainer access. Exploiting this vulnerability requires a valid administrator account.

Solution

Update to TYPO3 versions 10.4.50 ELTS, 11.5.44 ELTS, 12.4.31 LTS, 13.4.12 LTS that fix the problem described.

Credits

Thanks to Alexander Künzl for reporting this issue, and to TYPO3 core & security team member Oliver Hader for fixing it.

References

github.com/TYPO3-CMS/core
github.com/TYPO3-CMS/core/commit/a659cc8c0ae05c44dd7f01d13629cdd2d0b7219b
github.com/TYPO3/typo3/security/advisories/GHSA-6frx-j292-c844
github.com/advisories/GHSA-6frx-j292-c844
nvd.nist.gov/vuln/detail/CVE-2025-47940
typo3.org/security/advisory/typo3-core-sa-2025-016

Code Behaviors & Features

Detect and mitigate CVE-2025-47940 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →