vulnerability
Apache OFBiz: CVE-2023-46819: Missing Authentication vulnerability.
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Nov 7, 2023 | Dec 23, 2024 | Nov 28, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Nov 7, 2023
Added
Dec 23, 2024
Modified
Nov 28, 2025
Description
Missing authentication in apache software foundation apache ofbiz when using the solr plugin. this issue affects apache ofbiz: before 18.12.09. users are recommended to upgrade to version 18.12.09
Solution
apache-ofbiz-upgrade-latest
References
- CWE-306
- CVE-2023-46819
- https://attackerkb.com/topics/CVE-2023-46819
- URL-https://lists.apache.org/thread/mm5j0rsbl22q7yb0nmb6h2swbfjbwv99
- URL-https://ofbiz.apache.org/download.html
- URL-https://ofbiz.apache.org/release-notes-18.12.09.html
- URL-https://ofbiz.apache.org/security.html
- URL-https://gitbox.apache.org/repos/asf?p=ofbiz-plugins.git;h=998bf510a
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.