CVE-2024-38856 | Apache OFBiz 18.12.14 Screen Rendering Remote Code Execution

Posted by Angelo Barbosa | Aug 4, 2024 | CVE

A vulnerability classified as critical has been found in Apache OFBiz 18.12.14. Affected is an unknown function of the component Screen Rendering Handler. The manipulation leads to Remote Code Execution.

This vulnerability is traded as CVE-2024-38856. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38856 | Apache OFBiz 18.12.14 Screen Rendering Remote Code Execution

Related Posts

CVE-2024-0540 | Tenda W9 1.0.0.7(4456) httpd formOfflineSet ssidIndex stack-based overflow

CVE-2023-6329 | Control iD iDSecure 4.7.32.0 improper authentication

CVE-2024-35170 | Hidden Depth Sticky banner Plugin up to 1.2.0 on WordPress cross site scripting

CVE-2024-34506 | MediaWiki up to 1.39.6/1.40.2/1.41.0 SpecialMovePage.php denial of service