Security Advisory

CVE-2025-43819

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-24 01:37:03

Last updated 2025-09-24 13:14:12

Assigner Liferay

State PUBLISHED

Description

A Insufficient Session Expiration vulnerability in the Liferay Portal 7.4.3.121 through 7.3.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.3, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, and 2024.Q1.1 through 2024.Q1.12 is allow an remote non-authenticated attacker to reuse old user session by SLO API

← Browse all CVEs View on cve.org ↗