Zero-Day Authentication Bypass Exploit in Apache OFBiz

Summary:

CVE-2023-51467 is a critical authentication bypass vulnerability in Apache OFBiz. Exploitation of this vulnerability could result in bypass authentication to achieve a simple Server-Side Request Forgery (SSRF) or arbitrary code execution. Users are advised to update to Apache OFBiz version 18.12.11 to mitigate potential risks.

Threat Level – Red | Vulnerability Report

For a detailed threat advisory, download the pdf file here

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.