CVE-2024-25143 | Liferay DXP/Portal Document/Media Widget resource consumption

Posted by Angelo Barbosa | Feb 7, 2024 | CVE

A vulnerability was found in Liferay DXP and Portal and classified as critical. Affected by this issue is some unknown functionality of the component Document/Media Widget. The manipulation leads to resource consumption.

This vulnerability is handled as CVE-2024-25143. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-25143 | Liferay DXP/Portal Document/Media Widget resource consumption

Related Posts

CVE-2024-29384 | CSS Exfil Protection 1.1.0 content.js parseCSSRules information disclosure (Issue 41)

CVE-2022-45168 | Livebox Collaboration vDesk up to 018 Two-factor Authentication /login/backup_code improper authentication

CVE-2021-47123 | Linux Kernel up to 5.12.9 io_uring io_link_timeout_fn use after free (1f64f5e903b9/447c19f3b507)

CVE-2023-50228 | Parallels Desktop signature verification (ZDI-23-1803)