Description
Apache Commons FileUpload, as used in Liferay Portal 7.0.2 and earlier, is vulnerable to denial-of-service (DoS) attacks as identified in CVE-2016-3092 and CVE-2014-0050.
Severity
Severity 1
Fixed Version(s)
- Liferay Portal 7.0.3
- March 2020 source patch for Liferay Portal 6.2.5. Details for working with source patches can be found on the Patching Liferay Portal page.
Publication date: Mon, 26 Jun 2017 09:00:00 +0000