vulnerability
Apache OFBiz: CVE-2024-23946: Path Traversal vulnerability.
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Feb 28, 2024 | Dec 23, 2024 | Apr 28, 2026 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Feb 28, 2024
Added
Dec 23, 2024
Modified
Apr 28, 2026
Description
Possible path traversal in apache ofbiz allowing file inclusion. users are recommended to upgrade to version 18.12.12, that fixes the issue.
Solution
apache-ofbiz-upgrade-latest
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.