CVE-2024-3938

Published Jul 25, 2024

Last updated 3 months ago

CVSS medium 6.1

Overview

Description: The "reset password" login page accepted an HTML injection via URL parameters. This has already been rectified via patch, and as such it cannot be demonstrated via Demo site link. Those interested to see the vulnerability may spin up a http://localhost:8082/dotAdmin/#/public/login?resetEmailSent=true&resetEmail=%3Ch1%3E%3Ca%20href%3D%22https:%2F%2Fgoogle.com%22%3ECLICK%20ME%3C%2Fa%3E%3C%2Fh1%3E This will result in a view along these lines: * OWASP Top 10 - A03: Injection * CVSS Score: 5.4 * AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator * https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N&... https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator
Source: security@dotcms.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.1
Impact score: 2.7
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Severity: MEDIUM

Weaknesses

nvd@nist.gov: CWE-79
security@dotcms.com: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D8CDD8C-0F92-4218-ACDB-C3E691F928AF",
            "versionEndExcluding": "23.01.18",
            "versionStartIncluding": "5.1.5"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E85B4224-34E8-47CD-8F08-8B129868AF1F",
            "versionEndIncluding": "23.09.7",
            "versionStartIncluding": "23.02"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A6601A2-B008-44C9-A7C4-1DB2D613BD14",
            "versionEndIncluding": "24.04.23",
            "versionStartIncluding": "23.12.21"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "379748A4-D76F-4402-9A4F-E509C6735285",
            "versionEndExcluding": "24.05.31",
            "versionStartIncluding": "24.05.13"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:1:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33DBCA2A-D4E2-4AE6-B6E0-FD0A277266F4"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:10:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DECC3919-5044-41AF-9AAA-A964027F51C1"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:2:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "342C11DD-7760-42AE-8670-4461ECB51E4C"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:3:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90B73A81-7202-4B0B-822B-4F2EE4480663"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:4:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BFA7220-B846-451B-A7B2-C3DC87767575"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:5:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "258813CA-66A7-4DCA-883D-884FB88430DC"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:6:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E69C8B72-A38C-4D97-83BB-DCE392D3ABD0"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:7:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5309F19-2D65-4E87-87FD-2A0294008FF5"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:8:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBAEE45C-234C-4E5C-86CF-4F71A457D6F7"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24:9:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD553D7C-158F-489D-8C4C-8E2E056D52BA"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:23.10.24.0:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9692C9DB-6111-4EE6-8DE8-1614DF87F365"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:24.04.24:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB1AD7A4-1F60-493C-8BB2-E13F44F3CCD6"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:24.04.24:0:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE62FB6F-DB41-47B4-B8F7-0B9C887781D5"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:24.04.24:1:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "395197BB-2613-43BA-9223-195461F993D3"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:24.04.24:2:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72350E82-5B73-41A9-B3F1-8CA7BF389897"
          },
          {
            "criteria": "cpe:2.3:a:dotcms:dotcms:24.04.24:3:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "478A668F-DD76-4C0C-A444-A760C1AA5623"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References