5.4

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-32828

GHSA ID

GHSA-x347-fc9w-w7c3

EPSS Score

0.72735%

CWE

CWE-79

Published

1/6/2023

Updated

1/27/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2021-32828

CVE-2021-32828: Nuxeo vulnerable to Reflected Cross-Site Scripting leading to Remote Code Execution

The Nuxeo Platform is an open source content management platform for building business applications. In version 11.5.109, the oauth2 REST API is vulnerable to Reflected Cross-Site Scripting (XSS). This XSS can be escalated to Remote Code Execution (RCE) by levering the automation API.

(GitHub Advisory)

5.4

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-32828

GHSA ID

GHSA-x347-fc9w-w7c3

EPSS Score

0.72735%

CWE

CWE-79

Published

1/6/2023

Updated

1/27/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.nuxeo.ecm.platform:nuxeo-platform-oauth	maven	<= 10.10

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability occurs in the OAuth2 callback handler where user-controlled input (serviceProviderName path parameter) is directly reflected in the HTTP response without sanitization. The advisory explicitly shows this endpoint returns unescaped user input in error messages ("No service provider called: [input]"), and the code review confirms unsafe string concatenation. This XSS vector is then leveraged to execute arbitrary automation API operations through crafted JavaScript payloads.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** Nux*o Pl*t*orm is *n op*n sour** *ont*nt m*n***m*nt pl*t*orm *or *uil*in* *usin*ss *ppli**tions. In v*rsion **.*.***, t** `o*ut**` R*ST *PI is vuln*r**l* to R**l**t** *ross-Sit* S*riptin* (XSS). T*is XSS **n ** *s**l*t** to R*mot* *o** *x**ution

Reasoning

T** vuln*r**ility o**urs in t** O*ut** **ll***k **n*l*r w**r* us*r-*ontroll** input (s*rvi**Provi**rN*m* p*t* p*r*m*t*r) is *ir**tly r**l**t** in t** *TTP r*spons* wit*out s*nitiz*tion. T** **visory *xpli*itly s*ows t*is *n*point r*turns un*s**p** us

5.4

Basic Information

Concerned about an active attack path?

CVE-2021-32828: Nuxeo vulnerable to Reflected Cross-Site Scripting leading to Remote Code Execution

5.4

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI