Remote Code Execution Vulnerability in Liferay Portal by Liferay
CVE-2020-7961

9.8CRITICAL

Key Information:

Vendor: Liferay
Status: Liferay Portal
Vendor: CVE Published:; 20 March 2020

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 94%🦅 CISA Reported

What is CVE-2020-7961?

A deserialization vulnerability in Liferay Portal versions prior to 7.2.1 CE GA2 enables remote attackers to execute arbitrary code through the exploitation of JSON web services (JSONWS). This flaw arises from the improper handling of untrusted data, potentially allowing attackers to manipulate the application’s data flow and execute malicious code remotely, posing significant risks to the integrity and security of the affected systems.

CISA has reported CVE-2020-7961

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2020-7961 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2020-7961-POC
Created by mzer0one

CVE-2020-7961
Created by ShutdownRepo

CVE-2020-7961-payloads
Created by thelostworldFree