CVE-2020-13444

Liferay Portal 7.x before 7.3.2, and Liferay DXP 7.0 before fix pack 92, 7.1 before fix pack 18, and 7.2 before fix pack 5 does not sanitize the information returned by the DDMDataProvider API, which allows remote authenticated users to obtain the password to REST Data Providers.

CVSS v3 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://issues.liferay.com/browse/LPE-17009
https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/id/119317396	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:liferay:liferay_portal:7.1:ga1:::community:::*
	cpe:2.3:a:liferay:liferay_portal:7.1:ga2:::community:::*
	cpe:2.3:a:liferay:liferay_portal:7.1:ga3:::community:::*
	cpe:2.3:a:liferay:liferay_portal:7.1.1:ga2:::community:::*
	cpe:2.3:a:liferay:liferay_portal:7.2:ga1:::community:::*
	cpe:2.3:a:liferay:liferay_portal:7.3:ga1:::community:::*
	cpe:2.3:a:liferay:liferay_portal:7.3:ga2:::community:::*

History

No history.

Information

Published : 2020-06-10 19:15

Updated : 2020-07-16 14:15

NVD link : CVE-2020-13444

Mitre link : CVE-2020-13444

CVE.ORG link : CVE-2020-13444

JSON object : View

Products Affected

liferay

liferay_portal

CWE

NVD-CWE-noinfo

{"id": "CVE-2020-13444", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2020-06-10T19:15:09.883", "references": [{"url": "https://issues.liferay.com/browse/LPE-17009", "source": "cve@mitre.org"}, {"url": "https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/id/119317396", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Liferay Portal 7.x before 7.3.2, and Liferay DXP 7.0 before fix pack 92, 7.1 before fix pack 18, and 7.2 before fix pack 5 does not sanitize the information returned by the DDMDataProvider API, which allows remote authenticated users to obtain the password to REST Data Providers."}, {"lang": "es", "value": "Liferay Portal versiones 7.x anteriores a 7.3.2 y Liferay DXP versiones 7.0 anteriores a fixpack 92, versiones 7.1 anteriores a fixpack 18 y versiones 7.2 anteriores a fixpack 5, no sanean la informaci\u00f3n devuelta por la API DDMDataProvider, que permite a los usuarios autenticados remotos obtener la contrase\u00f1a en REST Data Providers"}], "lastModified": "2020-07-16T14:15:11.407", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:liferay:liferay_portal:7.1:ga1:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "AB4DACB5-6018-484E-B4D4-83A6070EB11E"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:7.1:ga2:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "5309DDFD-9B58-437A-9ADF-D0A3F7B5328F"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:7.1:ga3:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "323159D4-B013-4F7F-951B-A9EEA14B67FD"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:7.1.1:ga2:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "040B88A2-3AB5-48F4-AEDD-A4579A172C36"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:7.2:ga1:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "EE4E1281-8507-42CB-9330-7D4B23247164"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:7.3:ga1:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "3CBB1548-87A9-433E-A9B1-E83ACD627DD5"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:7.3:ga2:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "BD811C1C-7736-4AED-A637-9A5DEF2E895B"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}