Lucene search

[email protected]NVD:CVE-2022-28977

HistorySep 22, 2022 - 1:15 a.m.

CVE-2022-28977

2022-09-2201:15:10

CWE-601

[email protected]

web.nvd.nist.gov

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

46.6%

JSON

HtmlUtil.escapeRedirect in Liferay Portal 7.3.1 through 7.4.2, and Liferay DXP 7.0 fix pack 91 through 101, 7.1 fix pack 17 through 25, 7.2 fix pack 5 through 14, and 7.3 before service pack 3 can be circumvented by using multiple forward slashes, which allows remote attackers to redirect users to arbitrary external URLs via the (1) 'redirectparameter (2)FORWARD_URL` parameter, and (3) others parameters that rely on HtmlUtil.escapeRedirect.

Affected configurations

NVD

Node

liferaydxpMatch7.0-

liferaydxpMatch7.0fix_pack_100

liferaydxpMatch7.0fix_pack_101

liferaydxpMatch7.0fix_pack_91

liferaydxpMatch7.0fix_pack_92

liferaydxpMatch7.0fix_pack_93

liferaydxpMatch7.0fix_pack_94

liferaydxpMatch7.0fix_pack_95

liferaydxpMatch7.0fix_pack_96

liferaydxpMatch7.0fix_pack_97

liferaydxpMatch7.0fix_pack_98

liferaydxpMatch7.0fix_pack_99

liferaydxpMatch7.1-

liferaydxpMatch7.1fix_pack_17

liferaydxpMatch7.1fix_pack_18

liferaydxpMatch7.1fix_pack_19

liferaydxpMatch7.1fix_pack_20

liferaydxpMatch7.1fix_pack_21

liferaydxpMatch7.1fix_pack_22

liferaydxpMatch7.1fix_pack_23

liferaydxpMatch7.1fix_pack_24

liferaydxpMatch7.1fix_pack_25

liferaydxpMatch7.2-

liferaydxpMatch7.2fix_pack_10

liferaydxpMatch7.2fix_pack_11

liferaydxpMatch7.2fix_pack_12

liferaydxpMatch7.2fix_pack_13

liferaydxpMatch7.2fix_pack_14

liferaydxpMatch7.2fix_pack_5

liferaydxpMatch7.2fix_pack_6

liferaydxpMatch7.2fix_pack_7

liferaydxpMatch7.2fix_pack_8

liferaydxpMatch7.2fix_pack_9

liferaydxpMatch7.3-

liferaydxpMatch7.3sp1

liferaydxpMatch7.3sp2

liferayliferay_portalRange7.3.1–7.4.3.4

References

liferay.com

portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/cve-2022-28977-htmlutil.escaperedirect-circumvention-with-multiple-forward-slash

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

46.6%

JSON

Related for NVD:CVE-2022-28977

cve2 prion2 cvelist2 nvd1