Security Advisory

CVE-2023-33950

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-24 16:10:10

Last updated 2024-10-22 15:51:22

Assigner Liferay

State PUBLISHED

Description

Pattern Redirects in Liferay Portal 7.4.3.48 through 7.4.3.76, and Liferay DXP 7.4 update 48 through 76 allows regular expressions that are vulnerable to ReDoS attacks to be used as patterns, which allows remote attackers to consume an excessive amount of server resources via crafted request URLs.

← Browse all CVEs View on cve.org ↗