CVE-2025-43798 | Liferay DXP up to 7.3.10-u35/7.4.13-u92/2023.Q3.4/2023.Q4.0 One-Time Password missing critical step in authentication

A vulnerability, which was classified as problematic, has been found in Liferay DXP up to 7.3.10-u35/7.4.13-u92/2023.Q3.4/2023.Q4.0. This issue affects some unknown processing of the component One-Time Password Handler. Performing manipulation results in missing critical step in authentication.

This vulnerability is cataloged as CVE-2025-43798. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More