Apache OFBiz up to version 18.12.05 is vulnerable to Regular Expression Denial of Service (ReDoS) in the way it handles URLs provided by external, unauthenticated users. Upgrade to 18.12.06 or apply patches at https://issues.apache.org/jira/browse/OFBIZ-12599
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2022-09-02T07:10:20
Updated: 2024-08-03T06:10:59.432Z
Reserved: 2022-04-13T00:00:00
Link: CVE-2022-29158
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-09-02T07:15:07.630
Modified: 2024-11-21T06:58:36.370
Link: CVE-2022-29158
Redhat
No data.