heise online

Apache OfBiz: Vulnerability enables code smuggling

There are two security gaps in the enterprise resource planning software (ERP) Apache OfBiz that could allow attackers to infiltrate malicious code. An updated version of the software fixes the ...
Infosecurity-magazine.com

Critical Vulnerability in Apache OFBiz Requires Immediate Patching

Organizations utilizing Apache OFBiz have been warned to promptly address a critical vulnerability due to escalating exploitation attempts targeting a recently identified security flaw. Tracked as CVE ...
heise online

Apache OFBiz: Current security patch repairs older patches

Admins who use Apache OFBiz in companies should update the Enterprise Resource Planning (ERP) system to the latest version for security reasons. The latest security update prevents the bypassing of ...
CSOonline

New critical Apache OFBiz vulnerability patched as older flaw is actively exploited

Researchers discovered a new RCE flaw while analyzing the patch for a different flaw currently targeted by attackers. As the fifth critical flaw this year for the ERP framework, users are urged to ...
Bleeping Computer

CISA warns about actively exploited Apache OFBiz RCE flaw

The U.S. Cybersecurity & Infrastructure Security Agency is warning of two vulnerabilities exploited in attacks, including a path traversal impacting Apache OFBiz. Apache OFBiz (Open For Business) is a ...
TechRadar

Critical remote code execution flaw in Apache OFBiz patched

Apache released a patch for a critical severity vulnerability in its OFBiz software. The bug is an arbitrary code execution flaw, allowing threat actors to run any code on either Windows, or Linux ...