CVE-2025-4581

HIGH EXPLOITED

Liferay Portal 7.4.0-7.4.3.132 & DXP 2024.Q1.1-2025.Q1.4 - Blind SSRF via portal-settings-authentication-opensso-web

Title source: llm

Exploitation Summary

CVE-2025-4581 has been observed exploited in the wild (reported by VulnCheck KEV).

Description

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4 ,2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, 7.4 GA through update 92 allows a pre-authentication blind SSRF vulnerability in the portal-settings-authentication-opensso-web due to improper validation of user-supplied URLs. An attacker can exploit this issue to force the server to make arbitrary HTTP requests to internal systems, potentially leading to internal network enumeration or further exploitation.

References (1)

Core 1

Core References

Vendor Advisory

https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-4581

Scores

CVSS v3 8.6

EPSS 0.0006

EPSS Percentile 18.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

VulnCheck KEV 2025-07-13

CWE

CWE-918

Status published

Products (5)

com.liferay.portal/release.dxp.bom 2025.Q1.0 - 2025.Q1.5Maven

com.liferay.portal/release.portal.bom 7.4.0Maven

liferay/digital_experience_platform 7.4

liferay/digital_experience_platform 2024.q1.1 - 2024.q1.15

liferay/liferay_portal 7.4.0 - 7.4.3.132

Published Aug 09, 2025

Tracked Since Feb 18, 2026