Vulnerability Description
An issue was discovered in Liferay Portal CE 7.1.2 GA3. An attacker can use Liferay's Groovy script console to execute OS commands. Commands can be executed via a [command].execute() call, as demonstrated by "def cmd =" in the ServerAdminPortlet_script value to group/control_panel/manage. Valid credentials for an application administrator user account are required. NOTE: The developer disputes this as a vulnerability since it is a feature for administrators to run groovy scripts and therefore not a design flaw
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Liferay | Liferay Portal | 7.1.2 |
Related Weaknesses (CWE)
References
- https://dev.liferay.com/discover/portal/-/knowledge_base/7-1/running-scripts-fro
- https://pentest.com.tr/exploits/Liferay-CE-Portal-Tomcat-7-1-2-ga3-Groovy-ConsolExploitThird Party Advisory
- https://www.exploit-db.com/exploits/46525ExploitThird Party AdvisoryVDB Entry
- https://dev.liferay.com/discover/portal/-/knowledge_base/7-1/running-scripts-fro
- https://pentest.com.tr/exploits/Liferay-CE-Portal-Tomcat-7-1-2-ga3-Groovy-ConsolExploitThird Party Advisory
- https://www.exploit-db.com/exploits/46525ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2019-11444?
CVE-2019-11444 is a vulnerability with a CVSS score of 7.2 (HIGH). An issue was discovered in Liferay Portal CE 7.1.2 GA3. An attacker can use Liferay's Groovy script console to execute OS commands. Commands can be executed via a [command].execute() call, as demonstr...
How severe is CVE-2019-11444?
CVE-2019-11444 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-11444?
Check the references section above for vendor advisories and patch information. Affected products include: Liferay Liferay Portal.