Количество 2
Количество 2
CVE-2020-15842
Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack 90, 7.1 before fix pack 17, and 7.2 before fix pack 5, allows man-in-the-middle attackers to execute arbitrary code via crafted serialized payloads, because of insecure deserialization.
GHSA-mg3r-9jh8-33r9
Liferay Portal and Liferay DXP have Insecure Deserialization Vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-15842 Liferay Portal before 7.3.0, and Liferay DXP 7.0 before fix pack 90, 7.1 before fix pack 17, and 7.2 before fix pack 5, allows man-in-the-middle attackers to execute arbitrary code via crafted serialized payloads, because of insecure deserialization. | CVSS3: 8.1 | 1% Низкий | больше 5 лет назад |
| GHSA-mg3r-9jh8-33r9 Liferay Portal and Liferay DXP have Insecure Deserialization Vulnerability | CVSS3: 8.1 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу