Lucene search
China National Vulnerability DatabaseCNVD-2021-62974HistoryAug 05, 2021 - 12:00 a.m.
Liferay Portal and Liferay DXP Privilege Permission and Access Control Issues Vulnerability
2021-08-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
35.3%
Liferay Portal and Liferay DXP are both products of Liferay, a J2EE-based portal solution that uses EJB and JMS technologies and serves as a web publishing and shared workspace, enterprise collaboration platform, social network, etc. Liferay DXP is a digital experience collaboration platform. Liferay Portal and Liferay DXP are both digital experience collaboration platforms. Liferay Portal and Liferay DXP are vulnerable to permission and access control issues, which can be exploited by attackers to view through the site’s page management Pages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| liferay liferay portal >=7.1.0, | le | 7.3.1 |
Related
nvd
nvd
CVE-2021-33324
2021-08-03 19:15:08
cve
cve
CVE-2021-33324
2021-08-03 19:15:08
cvelist
cvelist
CVE-2021-33324
2021-08-03 18:24:05
prion
prion
Code injection
2021-08-03 19:15:00
osv
osv
CVE-2021-33324
2021-08-03 19:15:08