Lucene search
ApacheCVELIST:CVE-2023-49070HistoryDec 05, 2023 - 8:05 a.m.
CVE-2023-49070 Pre-auth RCE in Apache Ofbiz 18.12.09 due to XML-RPC still present
2023-12-0508:05:06
CWE-94
apache
www.cve.org
2
cve-2023-49070
pre-auth rce
apache ofbiz
xml-rpc
18.12.09
vulnerability
upgrade
18.12.10
Pre-auth RCE in Apache Ofbiz 18.12.09.
Itโs due to XML-RPCย no longer maintainedย still present.
This issue affects Apache OFBiz: before 18.12.10.ย
Users are recommended to upgrade to version 18.12.10
CNA Affected
[
{
"defaultStatus": "affected",
"product": "Apache OFBiz",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "18.12.10",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
githubexploit
githubexploit
Exploit for Code Injection in Apache Ofbiz
2023-12-14 09:32:41
Exploit for Code Injection in Apache Ofbiz
2023-12-17 22:56:10
cve
cve
CVE-2023-49070
2023-12-05 08:15:07
prion
prion
Code injection
2023-12-05 08:15:00
packetstorm
packetstorm
Apache OFBiz 18.12.09 Remote Code Execution
2023-12-29 00:00:00
zdt
zdt
Apache OFBiz 18.12.09 Remote Code Execution Exploit
2023-12-29 00:00:00
nuclei
nuclei
Apache OFBiz < 18.12.10 - Arbitrary Code Execution
2023-12-06 05:56:13
nvd
nvd
CVE-2023-49070
2023-12-05 08:15:07
thn
thn
Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attack
2023-12-27 15:39:00
New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems
2024-01-11 14:16:00
impervablog
impervablog
Imperva defends customers against recent vulnerabilities in Apache OFBiz
2023-12-29 19:48:20
metasploit
metasploit
Apache OFBiz XML-RPC Java Deserialization
2021-03-11 18:09:29
attackerkb
attackerkb
CVE-2023-49070
2023-12-05 00:00:00