What is the TYPO3 CNA?
TYPO3 is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 17 CVE records since 2025.
How many CVEs has TYPO3 published?
TYPO3 has published 17 CVE records, including 17 in the last two years.
What is TYPO3's CVE data quality grade?
RadicalNotion.AI grades TYPO3's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does TYPO3 publish CVEs for?
TYPO3 most frequently publishes CVEs for typo3, TYPO3 CMS, typo3.cms, typo3/cms-backend, typo3/cms-core.
Which vendors does TYPO3 cover?
TYPO3 publishes CVEs across 1 distinct vendors, most often TYPO3, composer, cps-it, ayacoo, mrsilaz.
Is TYPO3 actively publishing CVEs?
TYPO3 is currently active, based on 17 CVEs in the last two years.
What is the average severity of TYPO3's CVEs?
The average CVSS base score across TYPO3's scored CVEs is 5.8.
How many critical CVEs has TYPO3 published?
TYPO3 has published 1 critical-severity CVEs and 9 high-severity CVEs.
Are any of TYPO3's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of TYPO3's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in TYPO3's CVEs?
TYPO3's CVEs most often map to these CWE weakness types: CWE-502 (Deserialization of Untrusted Data), CWE-639 (Authorization Bypass Through User-Controlled Key), CWE-862 (Missing Authorization), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')).
How does TYPO3 rank among CNAs?
By total CVE volume, TYPO3 ranks #263 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
