Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistApacheCVELIST:CVE-2024-32113
HistoryMay 08, 2024 - 2:50 p.m.

CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE

2024-05-0814:50:07
CWE-22
apache
www.cve.org
1
apache
ofbiz
path traversal
rce
18.12.13

6.7 Medium

AI Score

Confidence

High

0.078 Low

EPSS

Percentile

94.3%

JSON

Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13.

Users are recommended to upgrade to version 18.12.13, which fixes the issue.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Apache OFBiz",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThan": "18.12.13",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Related

metasploit 1
nvd 1
nuclei 1
zdt 1
cve 1
packetstorm 1
rapid7blog 1
metasploit
metasploit
Apache OFBiz Forgot Password Directory Traversal
2024-06-14 23:41:12
nvd
nvd
CVE-2024-32113
2024-05-08 15:15:10
nuclei
nuclei
Apache OFBiz Directory Traversal - Remote Code Execution
2024-06-14 16:26:31
zdt
zdt
Apache OFBiz 18.12.12 - Directory Traversal Vulnerability
2024-05-19 00:00:00
cve
cve
CVE-2024-32113
2024-05-08 15:15:10
packetstorm
packetstorm
Apache OFBiz Forgot Password Directory Traversal
2024-06-18 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 06/21/2024
2024-06-21 18:53:52

6.7 Medium

AI Score

Confidence

High

0.078 Low

EPSS

Percentile

94.3%

JSON
Related for CVELIST:CVE-2024-32113
metasploit1nvd1nuclei1zdt1cve1packetstorm1rapid7blog1