2 matches found
CVE-2020-24554
The redirect module in Liferay Portal before 7.3.3 does not limit the number of URLs resulting in a 404 error that is recorded, which allows remote attackers to perform a denial of service attack by making repeated requests for pages that do not exist...
CVE-2020-24554
The CVE-2020-24554 entry affects Liferay Portal’s redirect module prior to version 7.3.3, where an unbounded number of 404 URLs can be logged, enabling remote denial-of-service via repeated requests to non-existent pages. The vulnerability’s impact is described as a DoS with HIGH risk per CVSSv3....