Vulnerabilities

CVE-2021-26295

by Fred · 22/03/2021

Apache OFBiz has unsafe deserialization prior to 17.12.06. An unauthenticated attacker can use this vulnerability to successfully take over Apache OFBiz.

Date published : 2021-03-22

http://packetstormsecurity.com/files/162104/Apache-OFBiz-SOAP-Java-Deserialization.html

https://lists.apache.org/thread.html/r3c1802eaf34aa78a61b4e8e044c214bc94accbd28a11f3a276586a31%40%3Cuser.ofbiz.apache.org%3E

Similar

Tags: Cybersecurity Alert