Apache OFBiz Product Security Update Advisory (CVE-2024-38856)

Overview

Apache has released an update to address a vulnerability in their OFBiz product. Users of affected versions are advised to update to the latest version.

Affected Products

 

CVE-2024-38856

  • Apache OFBiz versions: ~ 18.12.15 (excluded)

     

 

Resolved Vulnerabilities

 

Remote code execution vulnerability in Apache OFBiz (CVE-2024-38856)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2024-38856

  • Apache OFBiz version: 18.12.15

     

Referenced Sites

 

[1] CVE-2024-38856 Detail

https://nvd.nist.gov/vuln/detail/cve-2024-38856

[2] Security Vulnerabilities

https://ofbiz.apache.org/security.html

Article Link: Apache OFBiz Product Security Update Advisory (CVE-2024-38856) – ASEC