Main Vulnerability Database Vulnerabilities #VU16014

Server-side request forgery in Liferay Enterprise Portal - #VU16014

Published: November 22, 2018

Vulnerability identifier: #VU16014

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/U:Green

CVE-ID: N/A

CWE-ID: CWE-918

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Liferay

Affected software:
Liferay Enterprise Portal

Detailed vulnerability description

The vulnerability allows a remote user to perform SSRF attack.

The weakness exists due to unspecified error. A remote attacker can perform SSRF attack via Web Content templates and Application Display Templates (ADT) to bypass network access controls and gain access to sensitive information.

Remediation

Update to version 7.1.1.

Sources

https://dev.liferay.com/web/community-security-team/known-vulnerabilities/-/asset_publisher/4AHAYapUm8Xc/content/cst-7106-ssrf-vulnerability-via-templates?inheritRedirect=false&redirect=https%3A%2F%2Fdev.liferay.com%2Fweb%2Fcommunity-security-team%2Fknown-vulnerabilities%3Fp_p_id%3D101_INSTANCE_4AHAYapUm8Xc%26p_p_lifecycle%3D0%26p_p_state%3Dnormal%26p_p_mode%3Dview%26p_p_col_id%3Dcolumn-1%26p_p_col_pos%3D1%26p_p_col_count%3D4

Server-side request forgery in Liferay Enterprise Portal - #VU16014

Detailed vulnerability description

Remediation

Sources

Please verify you're human