Lucene search
CISACISA-KEV-CVE-2024-32113HistoryAug 07, 2024 - 12:00 a.m.
Apache OFBiz Path Traversal Vulnerability
2024-08-0700:00:00
CISA
www.cisa.gov
11
apache ofbiz
path traversal
vulnerability
remote code execution
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.2
Confidence
Low
EPSS
0.904
Percentile
98.9%
Apache OFBiz contains a path traversal vulnerability that could allow for remote code execution.
Related
githubexploit
githubexploit
Exploit for Path Traversal in Apache Ofbiz
2024-08-07 07:12:56
cvelist
cvelist
CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE
2024-05-08 14:50:07
cve
cve
CVE-2024-32113
2024-05-08 15:15:10
vulnrichment
vulnrichment
CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE
2024-05-08 14:50:07
attackerkb
attackerkb
CVE-2024-32113
2024-05-08 00:00:00
packetstorm
packetstorm
Apache OFBiz Forgot Password Directory Traversal
2024-06-18 00:00:00
exploitdb
exploitdb
Apache OFBiz 18.12.12 - Directory Traversal
2024-05-19 00:00:00
nessus
nessus
Apache OFBiz Path Traversal (CVE-2024-32113)
2024-08-20 00:00:00
nvd
nvd
CVE-2024-32113
2024-05-08 15:15:10
nuclei
nuclei
Apache OFBiz Directory Traversal - Remote Code Execution
2024-06-14 16:26:31
zdt
zdt
Apache OFBiz 18.12.12 - Directory Traversal Vulnerability
2024-05-19 00:00:00
metasploit
metasploit
Apache OFBiz forgotPassword/ProgramExport RCE
2024-06-14 23:41:12
thn
thn
Mirai Botnet targeting OFBiz Servers Vulnerable to Directory Traversal
2024-08-02 10:52:00
CISA Flags Critical Apache OFBiz Flaw Amid Active Exploitation Reports
2024-08-28 06:50:00
New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution
2024-08-06 04:16:00
f5
f5
rapid7blog
rapid7blog
CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)
2024-09-05 14:54:31
Metasploit Weekly Wrap-Up 06/21/2024
2024-06-21 18:53:52
Metasploit Weekly Wrap-Up 08/30/2024
2024-08-30 18:43:05
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.2
Confidence
Low
EPSS
0.904
Percentile
98.9%
Related for CISA-KEV-CVE-2024-32113