The redirect module in Liferay Portal before 7.3.3 does not limit the number of URLs resulting in a 404 error that is recorded, which allows remote attackers to perform a denial of service attack by making repeated requests for pages that do not exist.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-04T15:12:09.018Z

Reserved: 2020-08-20T00:00:00

Link: CVE-2020-24554

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-09-01T14:15:12.487

Modified: 2024-11-21T05:14:58.953

Link: CVE-2020-24554

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.