Zero-Day Authentication Bypass Exploit in Apache OFBiz
Zero-Day Authentication Bypass Exploit in Apache OFBiz
Summary:
CVE-2023-51467 is a critical authentication bypass vulnerability in Apache OFBiz. Exploitation of this vulnerability could result in bypass authentication to achieve a simple Server-Side Request Forgery (SSRF) or arbitrary code execution. Users are advised to update to Apache OFBiz version 18.12.11 to mitigate potential risks.
Threat Level – Red | Vulnerability Report
For a detailed threat advisory, download the pdf file here
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.