CVE-2024-3164
MEDIUMdotcms - Improper Access Control in System Maintenance Portlet
Title source: llmDescription
In dotCMS dashboard, the Tools and Log Files tabs under System → Maintenance Portlet, which is and always has been an Admin portlet, is accessible to anyone with that portlet and not just to CMS Admins. Users that get site admin but not a system admin, should not have access to the System Maintenance → Tools portlet. This would share database username and password under Log Files and download DB Dump and other dotCMS Content under Tools. Nothing in the System → Maintenance should be displayed for users with site admin role. Only system admins must have access to System Maintenance. OWASP Top 10 - A01) Broken Access Control OWASP Top 10 - A04) Insecure Design
References (3)
Core 3
Core References
Issue Tracking
https://github.com/dotCMS/core/issues/27909
Issue Tracking
https://github.com/dotCMS/core/pull/27912
Broken Link
https://www.dotcms.com/security/SI-69
Scores
CVSS v3
4.5
EPSS
0.0047
EPSS Percentile
37.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-284
Status
published
Products (2)
dotcms/dotcms
23.10.24 1 (7 CPE variants)
dotcms/dotcms
22.02 - 22.03.15
Published
Apr 01, 2024
Tracked Since
Feb 18, 2026