Infosecurity-magazine.com

Critical Vulnerability in Apache OFBiz Requires Immediate Patching

Organizations utilizing Apache OFBiz have been warned to promptly address a critical vulnerability due to escalating exploitation attempts targeting a recently identified security flaw. Tracked as CVE ...
Bleeping Computer

CISA warns about actively exploited Apache OFBiz RCE flaw

The U.S. Cybersecurity & Infrastructure Security Agency is warning of two vulnerabilities exploited in attacks, including a path traversal impacting Apache OFBiz. Apache OFBiz (Open For Business) is a ...
CSOonline

New critical Apache OFBiz vulnerability patched as older flaw is actively exploited

Researchers discovered a new RCE flaw while analyzing the patch for a different flaw currently targeted by attackers. As the fifth critical flaw this year for the ERP framework, users are urged to ...
ZDNet

Apache releases new version of OFBiz

Leading open source project groups like Apache have a reputation for delivering products that are cool for geeks to play with but lack competitiveness as business tools. This is not true. Apache's ...
Bleeping Computer

Apache OFBiz RCE flaw exploited to find vulnerable Confluence servers

A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept (PoC) exploits. Apache OFBiz (Open For Business) is an ...
CSOonline

Apache OFBiz patches new critical remote code execution flaw

The vulnerability represents a bypass of fixes put in place this year for three critical RCE flaws that had the same root cause and have since been used in attacks. Developers of Apache OFBiz, an open ...
heise online

CISA warns of attacks on Linux, Apache OFBiz, .NET and Paessler PRTG

The US IT security authority CISA warns of recently observed attacks in the wild on vulnerabilities in Linux, Apache OFBiz, Microsoft's .Net framework and Paessler PRTG. IT managers should therefore ...