Severity: Medium
ID: 245205
File Name: liferay_7_4_3_132.nasl
Version: 1.1
Type: remote
Family: CGI abuses
Published: 8/7/2025
Updated: 8/7/2025
Configuration: Enable thorough checks (optional)
Supported Sensors: Nessus
Enable CGI Scanning: true
Risk Factor: High
Score: 7.4
Risk Factor: Medium
Base Score: 5.6
Vector: CVSS2#AV:N/AC:H/Au:S/C:C/I:P/A:N
CVSS Score Source: CVE-2025-4604
Risk Factor: Medium
Base Score: 5.9
Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
Risk Factor: Medium
Base Score: 6.9
Threat Score: 3.6
Threat Vector: CVSS:4.0/E:U
Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:A/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N
CPE: cpe:/a:liferay:liferay_portal
Required KB Items: installed_sw/liferay_portal
Excluded KB Items: Settings/disable_cgi_scanning
Patch Publication Date: 5/12/2025
Vulnerability Publication Date: 5/12/2025
CVE: CVE-2025-4604
IAVA: 2025-A-0568