Insecure Deserialization in extension “Mailqueue” (mailqueue)_CVE-2026-0895

5.2 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H

Description

The extension extends TYPO3’ FileSpool component, which was vulnerable to Insecure Deserialization prior to TYPO3-CORE-SA-2026-004 https://typo3.org/security/advisory/typo3-core-sa-2026-004 . Since the related fix is overwritten by the extension, using the extension with a patched TYPO3 core version still allows for Insecure Deserialization, because the affected vulnerable code was extracted from TYPO3 core to the extension. More information about this vulnerability can be found in the related TYPO3 Core Security Advisory TYPO3-CORE-SA-2026-004 https://typo3.org/security/advisory/typo3-core-sa-2026-004 .

Basic Information

ID CVE-2026-0895

Source TYPO3

Published Jan 20, 2026 at 07:19

Modified Jan 20, 2026 at 07:21

Affected Product

Vendor TYPO3

Product Extension "Mailqueue"

Affected Versions TYPO3 Extension "Mailqueue" 0
TYPO3 Extension "Mailqueue" 0.5.0

CWE Classification

CWE-502

References

{
    "lastseen": "",
    "description": "The extension extends TYPO3\u2019 FileSpool component, which was vulnerable to Insecure Deserialization prior to  TYPO3-CORE-SA-2026-004 https://typo3.org/security/advisory/typo3-core-sa-2026-004 . Since the related fix is overwritten by the extension, using the extension with a patched TYPO3 core version still allows for Insecure Deserialization, because the affected vulnerable code was extracted from TYPO3 core to the extension. More information about this vulnerability can be found in the related TYPO3 Core Security Advisory  TYPO3-CORE-SA-2026-004 https://typo3.org/security/advisory/typo3-core-sa-2026-004 .",
    "published": "2026-01-20T07:19:00.786Z",
    "modified": "2026-01-20T07:21:28.109Z",
    "type": "cve",
    "title": "Insecure Deserialization in extension \"Mailqueue\" (mailqueue)",
    "source": "TYPO3",
    "references": "https://typo3.org/security/advisory/typo3-ext-sa-2026-001\nhttps://github.com/CPS-IT/mailqueue/commit/fd09aa4e1a751551bae4b228bee814e22f2048db\nhttps://github.com/CPS-IT/mailqueue/commit/12a0a35027bb5609917790a94e43bbf117abf733",
    "id": "CVE-2026-0895",
    "bulletinFamily": "",
    "cwe": [
        "CWE-502"
    ],
    "cvelist": null,
    "sourceData": "TYPO3 Extension \"Mailqueue\" 0\nTYPO3 Extension \"Mailqueue\" 0.5.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.2,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Extension \"Mailqueue\"",
    "version": "0",
    "vendor": "TYPO3",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}