CVE-2025-43792

Description

Remote staging in Liferay Portal 7.4.0 through 7.4.3.105, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not properly obtain the remote address of the live site from the database which, which allows remote authenticated users to exfiltrate data to an attacker controlled server (i.e., a fake live site) via the _com_liferay_exportimport_web_portlet_ExportImportPortlet_remoteAddress and _com_liferay_exportimport_web_portlet_ExportImportPortlet_remotePort parameters. To successfully exploit this vulnerability, an attacker must also successfully obtain the staging servers shared secret and add the attacker controlled server to the staging servers whitelist.

Risk Information

Base Score

5.3

MODERATE

Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Score

Exploitation Probability

0.042

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2025-43793,CVE-2025-43792 are fixed in Liferay-com.liferay.portal.kernel 130.0.1	Windows
Vulnerabilities CVE-2025-43793,CVE-2025-43792 are fixed in Liferay-com.liferay.portal.kernel for Linux 130.0.1	Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234