CVE-2024-3164

Source
https://cve.org/CVERecord?id=CVE-2024-3164
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-3164.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-3164
Published
2024-04-01T22:15:22.507Z
Modified
2026-04-10T05:12:31.196823Z
Severity
  • 4.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

In dotCMS dashboard, the Tools and Log Files tabs under System → Maintenance Portlet, which is and always has been an Admin portlet, is accessible to anyone with that portlet and not just to CMS Admins. Users that get site admin but not a system admin, should not have access to the System Maintenance → Tools portlet. This would share database username and password under Log Files and download DB Dump and other dotCMS Content under Tools. Nothing in the System → Maintenance should be displayed for users with site admin role. Only system admins must have access to System Maintenance.

OWASP Top 10 - A01) Broken Access Control

OWASP Top 10 - A04) Insecure Design

References

Affected packages

Git / github.com/dotcms/core

Affected ranges

Type
GIT
Repo
https://github.com/dotcms/core
Events
Introduced
Fixed
Introduced
Fixed
Introduced
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Database specific
{
    "versions": [
        {
            "introduced": "22.02"
        },
        {
            "fixed": "22.03.15"
        },
        {
            "introduced": "23.01"
        },
        {
            "fixed": "23.01.15"
        },
        {
            "introduced": "23.02"
        },
        {
            "last_affected": "23.09.7"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "23.10.24-7"
        }
    ]
}

Affected versions

22.*
22.10.1
3.*
3.0
3.5
3.5_Preview01
3.5_Preview02
3.6.0
pre-release.*
pre-release.07.13.23
pre3.*
pre3.5buildrevert
v22.*
v22.03
v22.03.1
v22.03.10
v22.03.11
v22.03.12
v22.03.13
v22.03.14
v22.03.2
v22.03.3
v22.03.4
v22.03.5
v22.03.6
v22.03.7
v22.03.8
v22.03.9
v23.*
v23.01
v23.01.1
v23.01.10
v23.01.11
v23.01.12
v23.01.13
v23.01.14
v23.01.2
v23.01.3
v23.01.4
v23.01.5
v23.01.6
v23.01.7
v23.01.8
v23.01.9
v23.09-pre
v23.09.7
v23.10.24
v23.10.24_lts_v1
v23.10.24_lts_v2
v23.10.24_lts_v3
v23.10.24_lts_v4
v23.10.24_lts_v5
v23.10.24_lts_v6
v23.10.24_lts_v7

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-3164.json"