CVE-2022-37033

Name of the Vulnerable Software and Affected Versions dotCMS versions 5.x through 22.06

Description The issue allows a user to create a temporary file based on a passed-in URL using the TempFileAPI, which attempts to block Server-Side Request Forgery (SSRF) access to local IP addresses or private subnets. However, the TempFileAPI follows any 302 redirects returned by the remote URL without re-validating the redirect URL. This enables the TempFileAPI to return data from local or private hosts that should not be accessible remotely.

Recommendations For dotCMS versions 5.x through 22.06, consider disabling the TempFileAPI until a patch is available to prevent potential SSRF attacks. Restrict access to the TempFileAPI to minimize the risk of exploitation. Avoid using the TempFileAPI to create temporary files based on user-provided URLs until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.