Apache OFBiz up to version 18.12.05 is vulnerable to Regular Expression Denial of Service (ReDoS) in the way it handles URLs provided by external, unauthenticated users. Upgrade to 18.12.06 or apply patches at https://issues.apache.org/jira/browse/OFBIZ-12599
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2022-09-02T07:10:20

Updated: 2024-08-03T06:10:59.432Z

Reserved: 2022-04-13T00:00:00

Link: CVE-2022-29158

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-09-02T07:15:07.630

Modified: 2024-11-21T06:58:36.370

Link: CVE-2022-29158

cve-icon Redhat

No data.