HomeVulnerabilityNew vital Apache OFBiz vulnerability patched as older flaw is actively exploited

New vital Apache OFBiz vulnerability patched as older flaw is actively exploited

It’s unclear what number of enterprises make use of Apache OFBiz as many organizations may use it internally, however primarily based on public knowledge identified customers embody giant organizations corresponding to IBM, HP, Accenture, United Airways, House Depot, and Upwork. Some third-party business purposes, corresponding to Atlassian JIRA, additionally use OFBiz modules. The mission is used globally and throughout many industries, however over 40% of identified customers are primarily based within the US.

The Open Internet Utility Safety Challenge (OWASP) not too long ago up to date its checklist of high 10 open supply security dangers for enterprises, with identified vulnerabilities topping the checklist.

New flaw discovered by analyzing earlier one

The brand new flaw is situated within the override view performance and permits unauthenticated attackers to entry delicate and restricted endpoints utilizing specifically crafted requests. This could pave the best way for distant code execution.

See also  GitLab warns of crucial pipeline execution vulnerability
- Advertisment -spot_img
RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular