Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2021-33990Improper Preservation of Permissions in Portal

CWE-281Improper Preservation of PermissionsCWE-78OS Command Injection4 documents4 sources
Severity
9.8CRITICALNVD
EPSS
63.8%
top 1.57%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Liferay Portal
Timeline
PublishedApr 16

Description

Liferay Portal 6.2.5 allows Command=FileUpload&Type=File&CurrentFolder=/ requests when frmfolders.html exists. NOTE: The vendor disputes this issue because the exploit reference link only shows frmfolders.html is accessible and does not demonstrate how an unauthorized user can upload a file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-8r46-m6m6-r9pq: Liferay Portal 62023-04-16
CVEList
CVE-2021-33990: Liferay Portal 62023-04-16

💥Exploits & PoCs

1
Exploit-DB
Liferay Portal 6.2.5 - Insecure Permissions2023-04-05
CVE-2021-33990 — Improper Preservation of Permissions | cvebase