V. Paulikas

**Name of the Vulnerable Software and Affected Versions** Alfresco Community Edition versions prior to 5.0.a **Description** A cross-site request forgery (CSRF) issue exists in the cmisbrowser servlet in Content Management Interoperability Service (CMIS) that allows remote attackers to hijack user authentication for unauthorized URL access and potentially obtain user credentials via a URL in the `url` parameter. **Recommendations** For versions prior to 5.0.a, update to version 5.0.a or later to resolve the issue. As a temporary workaround, consider restricting access to the cmisbrowser servlet to minimize the risk of exploitation. Avoid using the `url` parameter in the affected servlet until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Alfresco Community Edition versions prior to 5.0.a **Description** A server-side request forgery (SSRF) issue exists, allowing remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the `endpoint` parameter. **Recommendations** For versions prior to 5.0.a, update to version 5.0.a or later to resolve the issue. As a temporary workaround, consider restricting access to the proxy servlet to minimize the risk of exploitation. Avoid using the `endpoint` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Alfresco Community Edition versions 5.0.a and earlier **Description** A server-side request forgery (SSRF) issue exists due to a vulnerability in the cmisbrowser servlet in Content Management Interoperability Service (CMIS). This allows remote attackers to trigger outbound requests via a crafted URI in the `url` parameter. **Recommendations** For Alfresco Community Edition versions 5.0.a and earlier, consider restricting access to the cmisbrowser servlet as a temporary workaround until a patch is available. Avoid using the `url` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.