CVE-2022-42123

A Zip slip vulnerability in the Elasticsearch Connector in Liferay Portal 7.3.3 through 7.4.3.18, and Liferay DXP 7.3 before update 6, and 7.4 before update 19 allows attackers to create or overwrite existing files on the filesystem via the installation of a malicious Elasticsearch Sidecar plugin.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
http://liferay.com	Vendor Advisory
https://issues.liferay.com/browse/LPE-17518	Vendor Advisory
https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/cve-2022-42123	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:liferay:digital_experience_platform:7.3:-::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.4:-::::::
	cpe:2.3:a:liferay:liferay_portal::::::::

History

No history.

Information

Published : 2022-11-15 01:15

Updated : 2024-02-28 19:29

NVD link : CVE-2022-42123

Mitre link : CVE-2022-42123

CVE.ORG link : CVE-2022-42123

JSON object : View

Products Affected

liferay

liferay_portal
digital_experience_platform

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2022-42123", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2022-11-15T01:15:13.053", "references": [{"url": "http://liferay.com", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://issues.liferay.com/browse/LPE-17518", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/cve-2022-42123", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "A Zip slip vulnerability in the Elasticsearch Connector in Liferay Portal 7.3.3 through 7.4.3.18, and Liferay DXP 7.3 before update 6, and 7.4 before update 19 allows attackers to create or overwrite existing files on the filesystem via the installation of a malicious Elasticsearch Sidecar plugin."}, {"lang": "es", "value": "Una vulnerabilidad Zip slip en Elasticsearch Connector en Liferay Portal 7.3.3 a 7.4.3.18, y Liferay DXP 7.3 antes de la actualizaci\u00f3n 6 y 7.4 antes de la actualizaci\u00f3n 19 permite a los atacantes crear o sobrescribir archivos existentes en el sistema de archivos mediante la instalaci\u00f3n maliciosa del complemento Elasticsearch Sidecar."}], "lastModified": "2022-11-18T15:50:40.687", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F6A98ED-E694-4F39-95D0-C152BD1EC115"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.4:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96E84DBC-C740-4E23-8D1D-83C8AE49813E"}, {"criteria": "cpe:2.3:a:liferay:liferay_portal:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF1ADF5F-68DA-47D9-A6D9-16F8207525BB", "versionEndExcluding": "7.4.3.19", "versionStartIncluding": "7.3.3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}