CVE-2025-4655
Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery
EPSS 0.06%
Description
An SSRF vulnerability in FreeMarker templates in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.5, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, and 7.4 GA through update 92 allows template editors to bypass access validations via crafted URLs.
How to fix CVE-2025-4655
To remediate CVE-2025-4655, upgrade the affected package to a fixed version below.
- Maven/com.liferay.portal:release.dxp.bom—upgrade to 2025.Q1.6 or later
- —no fix listed
Is CVE-2025-4655 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- >= 2025.Q1.0, < 2025.Q1.6
- >= 7.4.0, <= 7.4.3.132
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N |