Overview
Apache has released an update to address a vulnerability in their OFBiz product. Users of affected versions are advised to update to the latest version.
Affected Products
CVE-2024-38856
- Apache OFBiz versions: ~ 18.12.15 (excluded)
Resolved Vulnerabilities
Remote code execution vulnerability in Apache OFBiz (CVE-2024-38856)
Vulnerability Patches
Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
CVE-2024-38856
- Apache OFBiz version: 18.12.15
Referenced Sites
[1] CVE-2024-38856 Detail
https://nvd.nist.gov/vuln/detail/cve-2024-38856
[2] Security Vulnerabilities
https://ofbiz.apache.org/security.html
Article Link: Apache OFBiz Product Security Update Advisory (CVE-2024-38856) – ASEC