CVE-2023-4262

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Sep 27, 2023

Updated: Aug 1, 2024

CWE ID 79

Summary

CVE-2023-4262 is a vulnerability identified in a specific software component. It was found that the user data field in question does not allow attacker control, but rejecting this assumption can lead to potential risks. This issue could potentially allow an attacker to manipulate data or gain unauthorized access, depending on the specific context and implementation of the software. It is essential for users and organizations to keep their software up-to-date to mitigate this vulnerability and minimize potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Liferay Portal

Affected Vendors

Liferay

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sqTcdW
https://www.cve.org/CVERecord?id=CVE-2023-4262
https://nvd.nist.gov/vuln/detail/CVE-2023-4262

Back to Vulnerability Database