CVE-2021-37608 | Apache OFBiz - Unrestricted Upload of File with Dangerous Type vulnerability

XMAN · Aug 18, 2021

CVE-2021-37608 Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz allows an attacker to execute remote commands. This issue affects Apache OFBiz version 17.12.07 and prior versions. Upgrade to at least 17.12.08

Assigning CNA
References
Description
Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz allows an attacker to execute remote commands. This issue affects Apache OFBiz version 17.12.07 and prior versions. Upgrade to at least 17.12.08 or apply patches at https://issues.apache.org/jira/browse/OFBIZ-12297.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://ofbiz.apache.org/security.html URL:https://ofbiz.apache.org/security.html

CVE-2021-37608 | Apache OFBiz - Unrestricted Upload of File with Dangerous Type vulnerability

XMAN

Active member