IBD Information about TYPO3 vulnerability incorrect

A blue symbolic IT security lock.

IBD Information about TYPO3 vulnerability incorrect

Based on information from the NCSC, the IBD sent an e-mail to all (including non-TYPO3) municipalities in the Netherlands.

Enquiries with the IBD show that no verification was done with the NCSC or the TYPO3 security team about the specific leak and whether it was a new vulnerability. This makes it very likely that it concerned an issue from September 2016 or, as the IBD hinted in the telephone call, 2014.