CVE-2020-7961 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2020-7961

Liferay | Liferay PortalAdded 2021-11-03Remediation Deadline 2022-05-03

Liferay Portal Deserialization of Untrusted Data Vulnerability

Liferay Portal contains a deserialization of untrusted data vulnerability that allows remote attackers to execute code via JSON web services.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-502

References

https://nvd.nist.gov/vuln/detail/CVE-2020-7961