CVE-2024-25147

Cross-site scripting (XSS) vulnerability in HtmlUtil.escapeJsLink in Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via crafted javascript: style links.

CVSS v3 9.6 CRITICAL

9.6^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147	Vendor Advisory
https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:liferay:liferay_portal:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:a:liferay:digital_experience_platform::::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:-::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_1::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_10::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_11::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_12::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_13::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_14::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_2::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_3::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_4::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_5::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_6::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_7::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_8::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_9::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_1::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_2::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_3::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_4::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_5::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.3:-::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.3:fix_pack_1::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.3:fix_pack_2::::::
	cpe:2.3:a:liferay:digital_experience_platform:7.3:service_pack_1::::::

History

28 Jan 2025, 21:25

Type	Values Removed	Values Added
First Time		Liferay digital Experience Platform Liferay liferay Portal Liferay
References	~~() https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147 -~~	() https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147 - Vendor Advisory
CPE		cpe:2.3:a:liferay:digital_experience_platform:7.2:-:::::: cpe:2.3:a:liferay:digital_experience_platform:7.3:service_pack_1:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_9:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_5:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_4:::::: cpe:2.3:a:liferay:digital_experience_platform:7.3:fix_pack_2:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_6:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_11:::::: cpe:2.3:a:liferay:digital_experience_platform:7.3:-:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_14:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_3:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_5:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_3:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_2:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_1:::::: cpe:2.3:a:liferay:digital_experience_platform:::::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_13:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_1:::::: cpe:2.3:a:liferay:liferay_portal:::::::: cpe:2.3:a:liferay:digital_experience_platform:7.3:fix_pack_1:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_2:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_4:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_8:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_12:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_7:::::: cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_10::::::

21 Nov 2024, 09:00

Type	Values Removed	Values Added
References	~~() https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147 -~~	() https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147 -

22 Feb 2024, 19:07

Type	Values Removed	Values Added
Summary		(es) Vulnerabilidad de Cross-site scripting (XSS) en HtmlUtil.escapeJsLink en Liferay Portal 7.2.0 a 7.4.1 y versiones anteriores no compatibles, y Liferay DXP 7.3 anterior al service pack 3, 7.2 anterior al fix pack 15 y versiones anteriores no compatibles, permite a atacantes remotos para inyectar script web o HTML arbitrarias a través de enlaces de estilo javascript: manipulados.

21 Feb 2024, 02:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-21 02:15

Updated : 2025-01-28 21:25

NVD link : CVE-2024-25147

Mitre link : CVE-2024-25147

CVE.ORG link : CVE-2024-25147

JSON object : View

Products Affected

liferay

liferay_portal
digital_experience_platform

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2024-25147", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@liferay.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.6, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2024-02-21T02:15:29.750", "references": [{"url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147", "tags": ["Vendor Advisory"], "source": "security@liferay.com"}, {"url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25147", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@liferay.com", "description": [{"lang": "en", "value": "CWE-79"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in HtmlUtil.escapeJsLink in Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via crafted javascript: style links."}, {"lang": "es", "value": "Vulnerabilidad de Cross-site scripting (XSS) en HtmlUtil.escapeJsLink en Liferay Portal 7.2.0 a 7.4.1 y versiones anteriores no compatibles, y Liferay DXP 7.3 anterior al service pack 3, 7.2 anterior al fix pack 15 y versiones anteriores no compatibles, permite a atacantes remotos para inyectar script web o HTML arbitrarias a trav\u00e9s de enlaces de estilo javascript: manipulados."}], "lastModified": "2025-01-28T21:25:53.533", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:liferay:liferay_portal:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69440C19-B9E7-41F3-B731-B5C7E37C718A", "versionEndExcluding": "7.4.2"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:liferay:digital_experience_platform:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF8EBC77-BA94-4AA8-BAF0-D1E3C9146459", "versionEndExcluding": "7.2"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DCF7F39-A198-4F7E-84B7-90C88C1BAA96"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7E68DF8-749B-4284-A7C9-929701A86B36"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "340DF1FE-5720-4516-BA51-F2197A654409"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97E155DE-05C6-4559-94A8-0EFEB958D0C9"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0635FB5F-9C90-49C7-A9EF-00C0396FCCAE"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77523B76-FC26-41B1-A804-7372E13F4FB2"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B15397B8-5087-4239-AE78-D3C37D59DE83"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CECAA19-8B7F-44C8-8059-6D4F2105E196"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68CBCEEB-7C28-4769-813F-3F01E33D2E08"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0CB4927-A361-4DFA-BDB8-A454EA2894AB"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2B771B7-D5CB-4778-A3A8-1005E4EE134C"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B9DB383-3791-4A43-BA4D-7695B203E736"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "13F02D77-20E9-4F32-9752-511EB71E6704"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6353CC8F-A6D4-4A0C-8D68-290CD8DEB4F8"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "759DDB90-6A89-4E4F-BD04-F70EFA5343B0"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43F61E2F-4643-4D5D-84DB-7B7B6E93C67B"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B057D81-7589-4007-9A0D-2D302B82F9CF"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F0F2558-6990-43D7-9FE2-8E99D81B8269"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11072673-C3AB-42EA-A26F-890DEE903D42"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.2:service_pack_5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "134560B0-9746-4EC3-8DE3-26E53E2CAC6D"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F6A98ED-E694-4F39-95D0-C152BD1EC115"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.3:fix_pack_1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CD6861A-D546-462F-8B22-FA76A4AF8A9C"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.3:fix_pack_2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "324BB977-5AAC-4367-98FC-605FF4997B3F"}, {"criteria": "cpe:2.3:a:liferay:digital_experience_platform:7.3:service_pack_1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2BBA40AC-4619-434B-90CF-4D29A1CA6D86"}], "operator": "OR"}]}], "sourceIdentifier": "security@liferay.com"}

9.6 /10