Improper URL Handling in dotCMS 5.x-22.06 by dotCMS
CVE-2022-37033

6.5MEDIUM

Key Information:

Vendor: Dotcms
Status: Dotcms
Vendor: CVE Published:; 1 February 2023

What is CVE-2022-37033?

In dotCMS version 5.x-22.06, a vulnerability exists in the TempFileAPI that permits users to create temporary files from a provided URL. While attempts were made to prevent Server-Side Request Forgery (SSRF) access to local IPs and private subnets, the implementation allows unauthorized access due to a lack of re-validation on 302 redirect URLs. This flaw could potentially expose sensitive data from local or private hosts that should remain inaccessible from external requests.

References

https://www.dotcms.com/security/SI-64

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 1, 2023
Vulnerability Reserved
Jul 29, 2022

JSON

Dotcms

What is CVE-2022-37033?

References

CVSS V3.1

Timeline