Description

uPortal before 4.0.13.1 does not properly check the CONFIG permission, which allows remote authenticated users to configure portlets by leveraging the SUBSCRIBE permission for a portlet.

Remediation

References

https://issues.jasig.org/browse/UP-4106

http://www.jasig.org/uportal/download/uportal-4-0-13-1

Related Vulnerabilities

CVE-2020-7653 Vulnerability in npm package snyk-broker

CVE-2021-32809 Vulnerability in maven package org.webjars.bowergithub.ckeditor:ckeditor4

CVE-2019-13127 Vulnerability in npm package mxgraph

CVE-2020-5263 Vulnerability in maven package org.webjars.npm:auth0-js

CVE-2021-23431 Vulnerability in npm package joplin

Severity

Critical

Classification

CWE-264

Tags

Patch Vendor Advisory