claytonvantol.us

SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2020-7961-liferay-liferay-portal.log

CVE-2020-7961 — Liferay Portal Deserialization of Untrusted Data Vulnerability

2021-11-03 • CISA Known Exploited Vulnerability

[event] Liferay Portal contains a deserialization of untrusted data vulnerability that allows remote attackers to execute code via JSON web services.

> AFFECTED SOFTWARE

Field	Value
Vendor	Liferay
Product	Liferay Portal
CWE	CWE-502
CVE ID	CVE-2020-7961
Date Added	2021-11-03
Due Date	2022-05-03
Ransomware Campaign	Unknown

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-05-03

> REFERENCES

[1] https://nvd.nist.gov/vuln/detail/CVE-2020-7961

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:15 UTC