CVE-2021-37608 | Apache OFBiz - Unrestricted Upload of File with Dangerous Type vulnerability

XMAN

Active member
Joined
Jul 12, 2021
Messages
19,634
Reaction score
20
Points
38
CVE-2021-37608 Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz allows an attacker to execute remote commands. This issue affects Apache OFBiz version 17.12.07 and prior versions. Upgrade to at least 17.12.08

Assigning CNA
References
Description
Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz allows an attacker to execute remote commands. This issue affects Apache OFBiz version 17.12.07 and prior versions. Upgrade to at least 17.12.08 or apply patches at https://issues.apache.org/jira/browse/OFBIZ-12297.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.

Continue reading...
 
Top