vulnerability
Apache OFBiz: CVE-2024-25065: Path Traversal vulnerability.
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:C/A:N) | Feb 28, 2024 | Dec 23, 2024 | Dec 23, 2024 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:N)
Published
Feb 28, 2024
Added
Dec 23, 2024
Modified
Dec 23, 2024
Description
Possible path traversal in Apache OFBiz allowing authentication bypass. Users are recommended to upgrade to version 18.12.12, that fixes the issue.
Solution
apache-ofbiz-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.