Количество 2
Количество 2
CVE-2021-33335
Privilege escalation vulnerability in Liferay Portal 7.0.3 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9 allows remote authenticated users with permission to update/edit users to take over a company administrator user account by editing the company administrator user.
GHSA-5gh9-g62h-f35m
Liferay Portal and Liferay DXP Has Company Administrator Accounts Vulnerable to Takeovers
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-33335 Privilege escalation vulnerability in Liferay Portal 7.0.3 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9 allows remote authenticated users with permission to update/edit users to take over a company administrator user account by editing the company administrator user. | CVSS3: 7.2 | 1% Низкий | больше 4 лет назад |
| GHSA-5gh9-g62h-f35m Liferay Portal and Liferay DXP Has Company Administrator Accounts Vulnerable to Takeovers | CVSS3: 7.2 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу