CVE-2024-3164

MEDIUM EPSS 37.1%

Published Apr 1, 20242y ago · Modified Jun 17, 20261w ago

4.5 CVSS 3.1

Medium

Published Apr 1, 2024 2y ago

Last Modified Jun 17, 2026 1w ago

Description

In dotCMS dashboard, the Tools and Log Files tabs under System → Maintenance Portlet, which is and always has been an Admin portlet, is accessible to anyone with that portlet and not just to CMS Admins. Users that get site admin but not a system admin, should not have access to the System Maintenance → Tools portlet. This would share database username and password under Log Files and download DB Dump and other dotCMS Content under Tools. Nothing in the System → Maintenance should be displayed for users with site admin role. Only system admins must have access to System Maintenance. OWASP Top 10 - A01) Broken Access Control OWASP Top 10 - A04) Insecure Design

CVSS Details

Base Score

4.5

Exploitability

0.9

Impact

3.6

Vector string

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required High

User Interaction Required

Scope Unchanged

Confidentiality High

Integrity None

Availability None

Threat Intelligence

EPSS Exploit Probability

37.1% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-284

Affected Products 10

Vendor	Product	Version	Range
dotcms	dotcms	*	≥22.02 – <22.03.15
dotcms	dotcms	*	≥23.01 – <23.01.15
dotcms	dotcms	*	≥23.02 – ≤23.09.7
dotcms	dotcms	23.10.24	any
dotcms	dotcms	23.10.24	any
dotcms	dotcms	23.10.24	any
dotcms	dotcms	23.10.24	any
dotcms	dotcms	23.10.24	any
dotcms	dotcms	23.10.24	any
dotcms	dotcms	23.10.24	any

References 3

github.com https://github.com/dotCMS/core/issues/27909

Issue Tracking
github.com https://github.com/dotCMS/core/pull/27912

Issue Tracking
dotcms.com https://www.dotcms.com/security/SI-69

Broken Link

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.