CVE-2025-3639

LOW

Liferay Portal/DXP - Auth Bypass

Title source: llm

Description

Liferay Portal 7.3.0 through 7.4.3.132, and Liferay DXP 2025.Q1 through 2025.Q1.6, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, 7.4 GA through update 92 and 7.3 GA through update 36 allows unauthenticated users with valid credentials to bypass the login process by changing the POST method to GET, once the site has MFA enabled.

Exploits (1)

nomisec WORKING POC 2 stars

by 6lj · poc

https://github.com/6lj/CVE-2025-3639

View Code ZIP pw:eip

References (1)

[Various Sources] https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-3639

Scores

CVSS v4 2.0

EPSS 0.0003

EPSS Percentile 9.6%

CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L

Details

CWE

CWE-288

Status published

Products (9)

com.liferay.portal/release.portal.bom 7.3.0-ga1Maven

Liferay/DXP 2024.Q1.1 - 2024.Q1.15

Liferay/DXP 2024Q2.0 - 2023.Q2.13

Liferay/DXP 2024.Q3.1 - 2024.Q3.13

Liferay/DXP 2024.Q4.0 - 2024.Q4.7

Liferay/DXP 2025.Q1.0 - 2025.Q1.6

Liferay/DXP 7.3.10 - 7.3.10-u36

Liferay/DXP 7.4.13 - 7.4.13-u92

Liferay/Portal 7.3.0 - 7.4.3.132

Published Aug 18, 2025

Tracked Since Feb 18, 2026