← Back to CVEs
CVE-2022-26352
CRITICALCISA KEV9.8
Description
An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous content creation is enabled, this allows an unauthenticated attacker to upload an executable file, such as a .jsp file, that can lead to remote code execution.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published7/17/2022
Last Modified11/3/2025
Sourcekev
Honeypot Sightings0
CISA KEV
VendordotCMS
ProductdotCMS
Vulnerability NamedotCMS Unrestricted Upload of File Vulnerability
KEV Date Added2022-08-25
Remediation Due Date2022-09-15
Ransomware UseKnown
Affected Products
dotcms:dotcms
References
https://groups.google.com/g/dotcms(cve@mitre.org)
http://packetstormsecurity.com/files/167365/dotCMS-Shell-Upload.html(af854a3a-2127-422b-91ae-364da2661108)
https://groups.google.com/g/dotcms(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-26352(134c704f-9b21-4f2e-91b3-4a467353bcc0)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.