Apache OFBiz has released a security update addressing a high-severity remote code execution vulnerability (CVE-2024-45195) affecting all versions before 18.12.16. Exploitable by unauthenticated attackers, this flaw allows arbitrary code execution on both Linux and Windows systems. The update also fixes a critical server-side request forgery (SSRF) vulnerability (CVE-2024-45507) with a CVSS score of 9.8. Both issues are part of a series of vulnerabilities previously patched but still exploited.
https://thehackernews.com/2024/09/apache-ofbiz-update-fixes-high-severity.html
crack-vault.de
#crackvault
Support Crack-Vault and help us keep providing free tools. Every donation counts!
(BTC) Address: bc1qhhva8uplmkaa3kkwxnux9t3y6l6kmhnwqzktzn
