CVE-2026-46722: CWE-611 Improper Restriction of XML External Entity Reference in TYPO3 Extension "Faceted Search"
The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index.
AI Analysis
Technical Summary
This vulnerability (CVE-2026-46722) in the TYPO3 Extension "Faceted Search" involves improper restriction of XML External Entity (XXE) references (CWE-611) during OOXML parsing by the file indexer. External entity resolution is not disabled, enabling an attacker to craft malicious xlsx or pptx documents that, when indexed, can cause the system to read local files or perform outbound HTTP requests. The content retrieved through these actions is then written into the search index, potentially exposing sensitive information or enabling further attacks. The vulnerability affects TYPO3 Faceted Search versions 0, 6.0.0, and 7.0.0. The CVSS 4.0 base score is 5.9 (medium severity), with network attack vector, low attack complexity, and partial privileges required.
Potential Impact
An attacker with the ability to place crafted OOXML files in indexed directories can exploit this vulnerability to read local files on the server or cause outbound HTTP requests. The retrieved data is written into the search index, which may lead to unauthorized disclosure of sensitive information. There is no indication of remote code execution or privilege escalation from the provided data. No known exploits in the wild have been reported to date.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since there is no official fix or temporary workaround provided, users should monitor TYPO3 advisories for updates. Until a patch is available, avoid indexing untrusted OOXML files or restrict the ability to place such files in indexed directories.
CVE-2026-46722: CWE-611 Improper Restriction of XML External Entity Reference in TYPO3 Extension "Faceted Search"
Description
The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability (CVE-2026-46722) in the TYPO3 Extension "Faceted Search" involves improper restriction of XML External Entity (XXE) references (CWE-611) during OOXML parsing by the file indexer. External entity resolution is not disabled, enabling an attacker to craft malicious xlsx or pptx documents that, when indexed, can cause the system to read local files or perform outbound HTTP requests. The content retrieved through these actions is then written into the search index, potentially exposing sensitive information or enabling further attacks. The vulnerability affects TYPO3 Faceted Search versions 0, 6.0.0, and 7.0.0. The CVSS 4.0 base score is 5.9 (medium severity), with network attack vector, low attack complexity, and partial privileges required.
Potential Impact
An attacker with the ability to place crafted OOXML files in indexed directories can exploit this vulnerability to read local files on the server or cause outbound HTTP requests. The retrieved data is written into the search index, which may lead to unauthorized disclosure of sensitive information. There is no indication of remote code execution or privilege escalation from the provided data. No known exploits in the wild have been reported to date.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since there is no official fix or temporary workaround provided, users should monitor TYPO3 advisories for updates. Until a patch is available, avoid indexing untrusted OOXML files or restrict the ability to place such files in indexed directories.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- TYPO3
- Date Reserved
- 2026-05-16T09:55:27.478Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a0c3635ec166c07b08eb152
Added to database: 5/19/2026, 10:06:45 AM
Last enriched: 5/19/2026, 10:22:22 AM
Last updated: 5/20/2026, 1:02:33 PM
Views: 10
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.