CVE-2024-32113

2024-05-0815:15:10

CWE-22

[email protected]

web.nvd.nist.gov

cve-2024-32113

path traversal

apache ofbiz

security vulnerability

upgrade

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

45.1%

JSON

Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13.

Users are recommended to upgrade to version 18.12.13, which fixes the issue.

References

issues.apache.org/jira/browse/OFBIZ-13006

lists.apache.org/thread/w6s60okgkxp2th1sr8vx0ndmgk68fqrd

ofbiz.apache.org/download.html

ofbiz.apache.org/security.html

Social References