N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-43736

GHSA ID

GHSA-cg99-m88x-422c

EPSS Score

0.11602%

CWE

CWE-770

Published

8/12/2025

Updated

8/12/2025

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-43736

CVE-2025-43736: Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability

A Denial Of Service via File Upload (DOS) vulnerability in Liferay Portal 7.4.3.0 through 7.4.3.132, Liferay DXP 2025.Q1.0 through 2025.Q1.8, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 GA through update 92 allows a user to upload a profile picture of more than 300kb into a user profile. This size is more than the noted max 300kb size. This extra data can significantly slow down the Liferay service.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-43736

CVE-2025-43736:

N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-43736

GHSA ID

GHSA-cg99-m88x-422c

EPSS Score

0.11602%

CWE

CWE-770

Published

8/12/2025

Updated

8/12/2025

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
com.liferay.portal:release.portal.bom	maven	>= 7.4.3.0, <= 7.4.3.132
com.liferay.portal:release.dxp.bom	maven	>= 2025.Q1.0, <= 2025.Q1.8	2025.Q1.9
com.liferay.portal:release.dxp.bom	maven	>= 2024.Q4.0, <= 2024.Q4.7
com.liferay.portal:release.dxp.bom	maven	>= 2024.Q3.0, <= 2024.Q3.13
com.liferay.portal:release.dxp.bom	maven	>= 2024.Q2.0, <= 2024.Q2.13
com.liferay.portal:release.dxp.bom	maven	>= 2024.Q1.0, <= 2024.Q1.16	2024.Q1.17
com.liferay.portal:release.dxp.bom	maven	<= 7.4.13.u92
com.liferay:com.liferay.frontend.taglib	maven	< 13.10.0	13.10.0
com.liferay:com.liferay.image.uploader.web	maven	< 5.0.56	5.0.56
com.liferay:com.liferay.users.admin.web	maven	< 11.0.27	11.0.27
com.liferay:com.liferay.account.admin.web	maven	< 2.0.138	2.0.138

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The analysis of the security vulnerability indicates a flaw in the file upload size validation process within Liferay Portal. The vulnerability, as described, allows a user to upload a profile picture exceeding the 300kb limit, potentially causing a Denial of Service. The provided commit ab8932bee29df7df377c468f662d55e624d9390d directly addresses this issue. The core of the vulnerability is located in the com.liferay.image.uploader.web.internal.util.UploadImageUtil.getMaxFileSize method. Before the patch, this method determined the maximum file size based on the currentLogoURL parameter, which was an unreliable way to identify the type of upload. An attacker could bypass this check, leading to the upload of a large file. The patch rectifies this by introducing a new type parameter in the request. This parameter is explicitly set in the user interface (JSP files) when a user is uploading a profile or organization picture. The getMaxFileSize method was updated to check for this type parameter, making the validation logic more robust and directly tied to the upload context. Therefore, the getMaxFileSize function is the primary vulnerable function, as it contained the flawed logic that was exploited.

N/A

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-43736: Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability

CVE-2025-43736:

N/A

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Vulnerability Intelligence
Miggo AI

Detect and Respond To Threats Faster.

Technical Details

N/A

N/A

Basic Information

Basic Information

CVE-2025-43736: Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

N/A

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-43736: Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability

CVE-2025-43736:

N/A

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Vulnerability IntelligenceMiggo AI

Technical Details

N/A

N/A

Basic Information

Basic Information

CVE-2025-43736: Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI