Vendor Report: Liferay

Vendor

Vendor CVE Table

6 4 2 9 1 2 5 1 1 6 2 1 1

Vendor CVE Counts by Year Graph

Vendor OWASP CVE Counts by Year Table

Expand/Collapse

Title	2020	2019	2018	2017	2016	2014	2011	2010	2009	2008	2007	2005	2004
Broken Access Control	0	0	1	0	0	0	0	0	0	0	0	0	0
Cross Site Scripting (XSS)	1	2	1	7	1	2	2	1	1	4	2	1	1
Insecure Deserialization	2	1	0	0	0	0	0	0	0	0	0	0	0
Unvalidated Redirect	0	0	0	1	0	0	0	0	0	0	0	0	0
Cross Site Request Forgery	0	0	0	0	0	0	0	0	0	2	0	0	0
Insufficient Logging and Monitoring	0	0	0	1	0	0	0	0	0	0	1	0	0

Vendor OWASP CVE Counts by Year Graph

Vendor Data Table

Product

Version Count

CVE Count

CvssV2 Base Score - Average

CvssV2 Exploitability Score - Average

BaseV2 Impact Score - Average

CvssV3 Base Score - Average

CvssV3 Exploitability Score - Average

BaseV3 Impact Score - Average

CVEs

1

2

5.55

8.60

4.65

N/A

N/A

N/A


CVE-2020-15841, CVE-2020-15842

1

1

7.50

10.00

6.40

9.80

3.90

5.90


CVE-2016-6517

Liferay Enterprise Portal

5

9

4.11

8.19

2.90

N/A

N/A

N/A


CVE-2004-2030, CVE-2007-6173, CVE-2008-0178, CVE-2008-0179, CVE-2008-0180,
CVE-2008-0181, CVE-2008-0182, CVE-2008-0563, CVE-2009-1294

5

28

4.88

8.11

4.03

6.49

2.58

3.44

Liferay Portal Enterprise

1

1

4.30

8.60

2.90

N/A

N/A

N/A


CVE-2005-4400

2

2

3.90

7.70

2.90

N/A

N/A

N/A


CVE-2007-6055, CVE-2011-1504