N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-62251

GHSA ID

GHSA-j4f7-gj7q-xg9m

EPSS Score

0.09621%

CWE

CWE-732

Published

10/14/2025

Updated

10/15/2025

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-62251

CVE-2025-62251: Liferay has Incorrect Permission Assignment for Critical Resource

Liferay Portal 7.3.0 through 7.4.3.119, and Liferay DXP 2023.Q3.1 through 2023.Q3.8, 2023.Q4.0 through 2023.Q4.5, 7.4 GA through update 92 and 7.3 GA though update 36 shows content to users who do not have permission to view it via the Menu Display Widget. This security flaw could result in sensitive information being exposed to unauthorized users.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-62251

CVE-2025-62251:

N/A

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2025-62251

GHSA ID

GHSA-j4f7-gj7q-xg9m

EPSS Score

0.09621%

CWE

CWE-732

Published

10/14/2025

Updated

10/15/2025

KEV Status

Technology

Java

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
com.liferay:com.liferay.site.navigation.menu.item.asset.vocabulary	maven	< 1.0.23	1.0.23

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in an incorrect permission assignment, allowing unauthorized users to view content via the Menu Display Widget. The analysis of the provided patch (commit 12bec829da315c21fbc96492ffbdda4c7a2e59cb) reveals that the fix was to implement a missing hasPermission method in the AssetVocabularySiteNavigationMenuItemType class. The commit message, "Implements the permission checking for the asset vocabulary site navigation items," confirms that a permission check was previously absent. Before the patch, when the Menu Display Widget was rendered, the framework would call the hasPermission method on the menu item type. Since AssetVocabularySiteNavigationMenuItemType did not have its own implementation, a default, permissive version from a parent interface was used, leading to the vulnerability. A runtime profiler would show a call to hasPermission on an instance of AssetVocabularySiteNavigationMenuItemType during the menu rendering process. Therefore, this function is identified as the key indicator of the vulnerability being triggered.

Vulnerable functions

com.liferay.site.navigation.menu.item.asset.vocabulary.internal.type.AssetVocabularySiteNavigationMenuItemType.hasPermission

modules/apps/site-navigation/site-navigation-menu-item-asset-vocabulary/src/main/java/com/liferay/site/navigation/menu/item/asset/vocabulary/internal/type/AssetVocabularySiteNavigationMenuItemType.java

The vulnerability is due to a missing permission check. The `AssetVocabularySiteNavigationMenuItemType` class did not implement the `hasPermission` method, causing the system to fall back to a default implementation in the `SiteNavigationMenuItemType` interface. This default implementation was likely permissive, always returning `true`, which allowed users without the necessary permissions to see menu items for asset vocabularies. The patch introduces a specific implementation of `hasPermission` that performs the correct security check, ensuring that only authorized users can view these menu items.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

N/A

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-62251: Liferay has Incorrect Permission Assignment for Critical Resource

CVE-2025-62251:

N/A

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Technical Details

Basic Information

Basic Information

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

N/A

N/A

CVE-2025-62251: Liferay has Incorrect Permission Assignment for Critical Resource

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI