Description

The User Manager service in Apache Jetspeed before 2.3.1 does not properly restrict access using Jetspeed Security, which allows remote attackers to (1) add, (2) edit, or (3) delete users via the REST API.

Remediation

References

http://haxx.ml/post/140552592371/remote-code-execution-in-apache-jetspeed-230-and

http://mail-archives.apache.org/mod_mbox/portals-jetspeed-user/201603.mbox/%3CB9165E38-F3D8-496D-8642-8A53FCAC736A%40gmail.com%3E

https://portals.apache.org/jetspeed-2/security-reports.html#CVE-2016-2171

Related Vulnerabilities

CVE-2012-1833 Vulnerability in maven package org.grails:grails-plugin-controllers

CVE-2016-4000 Vulnerability in maven package org.python:jython-standalone

CVE-2020-26523 Vulnerability in npm package froala-editor

CVE-2020-2131 Vulnerability in maven package org.jenkins-ci.plugins:harvest

CVE-2020-2186 Vulnerability in maven package org.jenkins-ci.plugins:ec2

Severity

High

Classification

CWE-264 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Vendor Advisory Patch