Pre-auth RCE in Apache Ofbiz 18.12.09. It's due to XML-RPC no longer maintained still present. This issue affects Apache OFBiz: before 18.12.10.  Users are recommended to upgrade to version 18.12.10
History
cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2023-12-05T08:05:06.966Z

Updated: 2024-08-19T07:48:13.953Z

Reserved: 2023-11-21T12:04:43.559Z

Link: CVE-2023-49070

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-12-05T08:15:07.443

Modified: 2024-11-21T08:32:45.697

Link: CVE-2023-49070

cve-icon Redhat

No data.