Arbitrary file reading vulnerability in Apache Software Foundation Apache OFBiz when using the Solr plugin. This is a
pre-authentication attack.
This issue affects Apache OFBiz: before 18.12.07.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2023/04/18/5 | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2023/04/18/9 | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2023/04/19/1 | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2023/04/19/6 | Mailing List Third Party Advisory |
https://lists.apache.org/thread/k8s76l0whydy45bfm4b69vq0mf94p3wc | Vendor Advisory |
https://ofbiz.apache.org/download.html | Vendor Advisory |
https://ofbiz.apache.org/security.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2023-04-14T15:01:31.987Z
Updated: 2023-04-14T15:01:31.987Z
Reserved: 2022-12-15T11:47:41.571Z
Link: CVE-2022-47501
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-14T16:15:07.203
Modified: 2023-04-26T14:41:47.663
Link: CVE-2022-47501
JSON object: View
Redhat Information
No data.
CWE