CVE-2025-4581 — Server-Side Request Forgery in DXP

CWE-918 — Server-Side Request Forgery5 documents5 sources

Severity

5.3MEDIUMNVD

EPSS

0.1%

top 82.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Liferay DXP Liferay Portal Liferay Digital Experience Platform +1 more

Timeline

PublishedAug 9

Description

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4 ,2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, 7.4 GA through update 92 allows a pre-authentication blind SSRF vulnerability in the portal-settings-authentication-opensso-web due to improper validation of user-supplied URLs. An attacker can exploit this issue to force the server to make arbitrary HTTP requests to internal systems, potentiall…

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N

Affected Packages4 packages

▶CVEListV5liferay/portal7.4.0 — 7.4.3.132

▶NVDliferay/liferay_portal7.4.0 — 7.4.3.132

▶CVEListV5liferay/dxp7.4.13 — 7.4.13-u92+5

▶NVDliferay/digital_experience_platform2024.q1.1 — 2024.q1.15+5

🔴Vulnerability Details

CVEList

CVE-2025-4581: Liferay Portal 7↗2025-08-09

▶

OSV

Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery↗2025-08-09

▶

GHSA

Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery↗2025-08-09

▶

VulnCheck

liferay digital_experience_platform Server-Side Request Forgery (SSRF)↗2025

▶