Lucene search
HistoryMay 07, 2011 - 7:55 p.m.
CVE-2011-1571
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.7%
Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.
Affected configurations
Node
liferayliferay_portalRange5.1.0–5.1.2community
ORliferayliferay_portalRange6.0.0–6.0.5community
Related
cve
cve
CVE-2011-1571
2022-10-03 16:15:10
CVE-2011-1501
2022-10-03 16:15:08
cvelist
cvelist
CVE-2011-1571
2022-10-03 16:15:10
veracode
veracode
Remote Code Execution (RCE)
2019-03-25 08:40:43
prion
prion
Code injection
2011-05-07 19:55:00
packetstorm
packetstorm
Liferay XSL Command Execution
2012-04-07 00:00:00
nvd
nvd
CVE-2011-1501
2011-05-06 16:38:29
nessus
nessus
Liferay Portal < 6.0.6 Multiple Vulnerabilities
2012-05-22 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.7%
Related for NVD:CVE-2011-1571