vulnerability
Apache OFBiz: CVE-2021-37608: Unrestricted upload of file with dangerous type vulnerability.
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Aug 18, 2021 | Dec 23, 2024 | Nov 28, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Aug 18, 2021
Added
Dec 23, 2024
Modified
Nov 28, 2025
Description
Unrestricted upload of file with dangerous type vulnerability in apache ofbiz allows an attacker to execute remote commands. this issue affects apache ofbiz version 17.12.07 and prior versions. upgrade to at least 17.12.08 or apply patches at https://issues.apache.org/jira/browse/ofbiz-12297.
Solution
apache-ofbiz-upgrade-latest
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.