CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-43788

The organization selector in Liferay Portal 7.4.0 through 7.4.3.124, and Liferay DXP 2024.Q1.1 through 2024.Q1.12 and 7.4 update 81 through update 85 does not check user permission, which allows remote authenticated users to obtain a list of all organizations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.4%

CVSS Severity

CVSS v3 Score 4.3

References

https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-43788

Products affected by CVE-2025-43788

Liferay » Digital Experience Platform » Version: 2024.q1.1

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.1
Liferay » Digital Experience Platform » Version: 2024.q1.10

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.10
Liferay » Digital Experience Platform » Version: 2024.q1.11

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.11
Liferay » Digital Experience Platform » Version: 2024.q1.12

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.12
Liferay » Digital Experience Platform » Version: 2024.q1.2

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.2
Liferay » Digital Experience Platform » Version: 2024.q1.3

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.3
Liferay » Digital Experience Platform » Version: 2024.q1.4

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.4
Liferay » Digital Experience Platform » Version: 2024.q1.5

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.5
Liferay » Digital Experience Platform » Version: 2024.q1.6

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.6
Liferay » Digital Experience Platform » Version: 2024.q1.7

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.7
Liferay » Digital Experience Platform » Version: 2024.q1.8

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.8
Liferay » Digital Experience Platform » Version: 2024.q1.9

cpe:2.3:a:liferay:digital_experience_platform:2024.q1.9
Liferay » Digital Experience Platform » Version: 7.4

cpe:2.3:a:liferay:digital_experience_platform:7.4
Liferay » Liferay Portal » Version: 7.4.3.100

cpe:2.3:a:liferay:liferay_portal:7.4.3.100
Liferay » Liferay Portal » Version: 7.4.3.101

cpe:2.3:a:liferay:liferay_portal:7.4.3.101
Liferay » Liferay Portal » Version: 7.4.3.102

cpe:2.3:a:liferay:liferay_portal:7.4.3.102
Liferay » Liferay Portal » Version: 7.4.3.103

cpe:2.3:a:liferay:liferay_portal:7.4.3.103
Liferay » Liferay Portal » Version: 7.4.3.104

cpe:2.3:a:liferay:liferay_portal:7.4.3.104
Liferay » Liferay Portal » Version: 7.4.3.105

cpe:2.3:a:liferay:liferay_portal:7.4.3.105
Liferay » Liferay Portal » Version: 7.4.3.106

cpe:2.3:a:liferay:liferay_portal:7.4.3.106
Liferay » Liferay Portal » Version: 7.4.3.107

cpe:2.3:a:liferay:liferay_portal:7.4.3.107
Liferay » Liferay Portal » Version: 7.4.3.108

cpe:2.3:a:liferay:liferay_portal:7.4.3.108
Liferay » Liferay Portal » Version: 7.4.3.109

cpe:2.3:a:liferay:liferay_portal:7.4.3.109
Liferay » Liferay Portal » Version: 7.4.3.110

cpe:2.3:a:liferay:liferay_portal:7.4.3.110
Liferay » Liferay Portal » Version: 7.4.3.111

cpe:2.3:a:liferay:liferay_portal:7.4.3.111
Liferay » Liferay Portal » Version: 7.4.3.112

cpe:2.3:a:liferay:liferay_portal:7.4.3.112
Liferay » Liferay Portal » Version: 7.4.3.113

cpe:2.3:a:liferay:liferay_portal:7.4.3.113
Liferay » Liferay Portal » Version: 7.4.3.114

cpe:2.3:a:liferay:liferay_portal:7.4.3.114
Liferay » Liferay Portal » Version: 7.4.3.115

cpe:2.3:a:liferay:liferay_portal:7.4.3.115
Liferay » Liferay Portal » Version: 7.4.3.116

cpe:2.3:a:liferay:liferay_portal:7.4.3.116
Liferay » Liferay Portal » Version: 7.4.3.117

cpe:2.3:a:liferay:liferay_portal:7.4.3.117
Liferay » Liferay Portal » Version: 7.4.3.118

cpe:2.3:a:liferay:liferay_portal:7.4.3.118
Liferay » Liferay Portal » Version: 7.4.3.119

cpe:2.3:a:liferay:liferay_portal:7.4.3.119
Liferay » Liferay Portal » Version: 7.4.3.120

cpe:2.3:a:liferay:liferay_portal:7.4.3.120
Liferay » Liferay Portal » Version: 7.4.3.121

cpe:2.3:a:liferay:liferay_portal:7.4.3.121
Liferay » Liferay Portal » Version: 7.4.3.122

cpe:2.3:a:liferay:liferay_portal:7.4.3.122
Liferay » Liferay Portal » Version: 7.4.3.123

cpe:2.3:a:liferay:liferay_portal:7.4.3.123
Liferay » Liferay Portal » Version: 7.4.3.124

cpe:2.3:a:liferay:liferay_portal:7.4.3.124
Liferay » Liferay Portal » Version: 7.4.3.81

cpe:2.3:a:liferay:liferay_portal:7.4.3.81
Liferay » Liferay Portal » Version: 7.4.3.82

cpe:2.3:a:liferay:liferay_portal:7.4.3.82
Liferay » Liferay Portal » Version: 7.4.3.83

cpe:2.3:a:liferay:liferay_portal:7.4.3.83
Liferay » Liferay Portal » Version: 7.4.3.84

cpe:2.3:a:liferay:liferay_portal:7.4.3.84
Liferay » Liferay Portal » Version: 7.4.3.85

cpe:2.3:a:liferay:liferay_portal:7.4.3.85
Liferay » Liferay Portal » Version: 7.4.3.94

cpe:2.3:a:liferay:liferay_portal:7.4.3.94
Liferay » Liferay Portal » Version: 7.4.3.95

cpe:2.3:a:liferay:liferay_portal:7.4.3.95
Liferay » Liferay Portal » Version: 7.4.3.96

cpe:2.3:a:liferay:liferay_portal:7.4.3.96
Liferay » Liferay Portal » Version: 7.4.3.97

cpe:2.3:a:liferay:liferay_portal:7.4.3.97
Liferay » Liferay Portal » Version: 7.4.3.98

cpe:2.3:a:liferay:liferay_portal:7.4.3.98
Liferay » Liferay Portal » Version: 7.4.3.99

cpe:2.3:a:liferay:liferay_portal:7.4.3.99

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-43788

Products

Pricing

Contact Us