Liferay Portal
by Liferay
Standard maintenance is sufficient
Liferay Portal has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
2.2%
Confirmed actively exploited (CISA)
0.3%
Public exploit code available
0.3%
Based on 312 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2020-7961 | 9.8 | 94.4% | Yes |
| CVE-2019-16891 | 9.8 | 79.6% | — |
| CVE-2021-33990 | 9.8 | 56.2% | — |
| CVE-2019-11444 | 7.2 | 40.4% | — |
| CVE-2025-4388 | 6.1 | 25.1% | — |
| CVE-2022-42118 | 6.1 | 13.2% | — |
| CVE-2024-25608 | 6.1 | 11.0% | — |
| CVE-2016-3670 | 6.1 | 9.3% | — |
| CVE-2024-26272 | 8.8 | 6.1% | — |
| CVE-2025-4576 | 6.1 | 5.6% | — |
| CVE-2024-38002 | 9.0 | 4.3% | — |
| CVE-2020-28884 | 7.2 | 3.8% | — |
| CVE-2020-13445 | 8.8 | 3.7% | — |
| CVE-2020-7934 | 5.4 | 3.3% | — |
| CVE-2024-26271 | 8.8 | 2.2% | — |
| CVE-2024-26273 | 8.8 | 2.0% | — |
| CVE-2021-38266 | 7.5 | 1.9% | — |
| CVE-2025-3594 | 9.8 | 1.6% | — |
| CVE-2023-35030 | 8.8 | 1.4% | — |
| CVE-2022-42124 | 7.5 | 1.2% | — |
2
/ 100
low-risk
Active Threat
2/50 · Minimal
Exploit Availability
0/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.