Apache just patched a critical vulnerability (christened CVE-2024-38856) in OFBiz, their open-source ERP system. Discovered by SonicWall Capture Labs, this pre-authentication remote code execution flaw has a CVSS score of 9.8 and involves the exposure of critical endpoints to unauthenticated threat actors using a crafted request in the override view functionality. Of the 170 companies […]
The post Critical Apache OFBiz Flaw Makes Waves Worldwide appeared first on SecPod Blog.
