The vulnerability permits attackers to circumvent authentication processes, enabling them to remotely execute arbitrary code
References
Link | Resource |
---|---|
https://issues.apache.org/jira/browse/OFBIZ-12873 | Issue Tracking Patch Vendor Advisory |
https://lists.apache.org/thread/9tmf9qyyhgh6m052rhz7lg9vxn390bdv | Mailing List Vendor Advisory |
https://lists.apache.org/thread/oj2s6objhdq72t6g29omqpcbd1wlp48o | Mailing List Vendor Advisory |
https://ofbiz.apache.org/download.html | Product |
https://ofbiz.apache.org/release-notes-18.12.11.html | Release Notes |
https://ofbiz.apache.org/security.html | Not Applicable |
https://www.openwall.com/lists/oss-security/2023/12/26/3 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2023-12-26T14:46:59.800Z
Updated: 2024-01-04T09:02:37.085Z
Reserved: 2023-12-20T12:14:42.522Z
Link: CVE-2023-51467
JSON object: View
NVD Information
Status : Modified
Published: 2023-12-26T15:15:08.853
Modified: 2024-01-04T09:15:09.910
Link: CVE-2023-51467
JSON object: View
Redhat Information
No data.
CWE