CVE-2020-6754

Name of the Vulnerable Software and Affected Versions dotCMS versions prior to 5.2.4

Description The issue allows for directory traversal, leading to incorrect access control. This enables an attacker to read or execute files under $TOMCAT HOME/webapps/ROOT/assets, a directory that should be protected. Furthermore, attackers can upload temporary files, such as .jsp files, into /webapps/ROOT/assets/tmp upload, potentially leading to remote command execution with the permissions of the user running the dotCMS application.

Recommendations For versions prior to 5.2.4, update to version 5.2.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the /webapps/ROOT/assets directory and disabling the ability to upload files to /webapps/ROOT/assets/tmp upload until the update is applied.