Bleeping Computer

Apache fixes critical OFBiz remote code execution vulnerability

Apache has fixed a critical security vulnerability in its open-source OFBiz (Open For Business) software, which could allow attackers to execute arbitrary code on vulnerable Linux and Windows servers.
Infosecurity-magazine.com

Critical Vulnerability in Apache OFBiz Requires Immediate Patching

Organizations utilizing Apache OFBiz have been warned to promptly address a critical vulnerability due to escalating exploitation attempts targeting a recently identified security flaw. Tracked as CVE ...
TechRadar

Critical remote code execution flaw in Apache OFBiz patched

Apache released a patch for a critical severity vulnerability in its OFBiz software. The bug is an arbitrary code execution flaw, allowing threat actors to run any code on either Windows, or Linux ...
Bleeping Computer

CISA warns about actively exploited Apache OFBiz RCE flaw

The U.S. Cybersecurity & Infrastructure Security Agency is warning of two vulnerabilities exploited in attacks, including a path traversal impacting Apache OFBiz. Apache OFBiz (Open For Business) is a ...
heise online

Apache OFBiz: Current security patch repairs older patches

Admins who use Apache OFBiz in companies should update the Enterprise Resource Planning (ERP) system to the latest version for security reasons. The latest security update prevents the bypassing of ...