Lucene search
China National Vulnerability DatabaseCNVD-2021-62966HistoryAug 05, 2021 - 12:00 a.m.
Liferay Portal and Liferay DXP Licensing Issue Vulnerability
2021-08-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.004 Low
EPSS
Percentile
72.3%
Liferay Portal and Liferay DXP are both products of Liferay, a J2EE-based portal solution that uses EJB and JMS technologies and serves as a web publishing and shared workspace, enterprise collaboration platform, social network, etc. Liferay DXP is a digital experience collaboration platform. Liferay Portal and Liferay DXP are both digital experience collaboration platforms that are vulnerable to authorization issues that could be exploited to enumerate a user’s email address via the forgot password feature. .
| CPE | Name | Operator | Version |
|---|---|---|---|
| liferay liferay dxp | lt | 7.3 | |
| liferay liferay portal >=6.2.3, | le | 7.3.2 |
Related
nvd
nvd
CVE-2021-33321
2021-08-03 19:15:08
prion
prion
Default configuration
2021-08-03 19:15:00
osv
osv
CVE-2021-33321
2021-08-03 19:15:08
cvelist
cvelist
CVE-2021-33321
2021-08-03 18:12:26
cve
cve
CVE-2021-33321
2021-08-03 19:15:08