Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K000141002
HistorySep 09, 2024 - 12:00 a.m.

K000141002: Apache OFBiz vulnerabilities CVE-2024-32113, CVE-2024-36104, and CVE-2024-45195

2024-09-0900:00:00
my.f5.com
52
apache ofbiz
cve-2024-32113
cve-2024-36104
cve-2024-45195
path traversal
forced browsing
upgrade

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.904

Percentile

98.9%

JSON

Security Advisory Description

Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13. Users are recommended to upgrade to version 18.12.13, which fixes the issue.

Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 18.12.14. Users are recommended to upgrade to version 18.12.14, which fixes the issue.

Direct Request (‘Forced Browsing’) vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 18.12.16. Users are recommended to upgrade to version 18.12.16, which fixes the issue.

Impact

There is no impact; F5 products are not affected by these vulnerabilities.

Note: The Apache OFBiz software is not installed on any F5 products. For more information about Apache OFBiz, refer to the The Apache OFBiz® Project page. This link takes you to a resource outside of MyF5. The third party could remove the document without our knowledge.

Affected configurations

Vulners
Node
f5big-ip_next_central_managerMatch20.2.0
OR
f5big-ip_next_central_managerMatch20.2.1
OR
f5big-ip_nextMatch1.1.0
OR
f5big-ip_nextMatch1.1.1
OR
f5big-ip_nextMatch1.2.0
OR
f5big-ip_nextMatch1.2.1
OR
f5big-ip_nextMatch1.3.0
OR
f5big-ip_nextMatch1.3.1
OR
f5big-ip_nextMatch1.1.0
OR
f5big-ip_nextMatch1.1.1
OR
f5big-ip_nextMatch1.2.0
OR
f5big-ip_nextMatch1.2.1
OR
f5big-ip_nextMatch1.3.0
OR
f5big-ip_nextMatch1.3.1
OR
f5big-ip_nextMatch1.1.0
OR
f5big-ip_nextMatch1.1.1
OR
f5big-ip_nextMatch1.2.0
OR
f5big-ip_nextMatch1.2.1
OR
f5big-ip_nextMatch1.3.0
OR
f5big-ip_nextMatch1.3.1
OR
f5big-ip_ltmMatch20.2.0
OR
f5big-ip_ltmMatch20.2.1
OR
f5big-ip_nextMatch1.7.0
OR
f5big-ip_nextMatch1.7.1
OR
f5big-ip_nextMatch1.7.10
OR
f5big-ip_nextMatch1.7.2
OR
f5big-ip_nextMatch1.7.3
OR
f5big-ip_nextMatch1.7.4
OR
f5big-ip_nextMatch1.7.5
OR
f5big-ip_nextMatch1.7.6
OR
f5big-ip_nextMatch1.7.7
OR
f5big-ip_nextMatch1.7.8
OR
f5big-ip_nextMatch1.7.9
OR
f5big-ip_nextMatch1.8.0
OR
f5big-ip_nextMatch1.8.2
OR
f5big-ip_nextMatch1.9.0
OR
f5big-ip_nextMatch1.9.1
OR
f5big-ip_nextMatch1.9.2
OR
f5big-ip_nextMatch20.2.0
OR
f5big-ip_nextMatch20.2.1
OR
f5big-ipMatch15.1.0
OR
f5big-ipMatch15.1.1
OR
f5big-ipMatch15.1.10
OR
f5big-ipMatch15.1.2
OR
f5big-ipMatch15.1.3
OR
f5big-ipMatch15.1.4
OR
f5big-ipMatch15.1.5
OR
f5big-ipMatch15.1.6
OR
f5big-ipMatch15.1.7
OR
f5big-ipMatch15.1.8
OR
f5big-ipMatch15.1.9
OR
f5big-ip_afmMatch15.1.0
OR
f5big-ip_afmMatch15.1.1
OR
f5big-ip_afmMatch15.1.10
OR
f5big-ip_afmMatch15.1.2
OR
f5big-ip_afmMatch15.1.3
OR
f5big-ip_afmMatch15.1.4
OR
f5big-ip_afmMatch15.1.5
OR
f5big-ip_afmMatch15.1.6
OR
f5big-ip_afmMatch15.1.7
OR
f5big-ip_afmMatch15.1.8
OR
f5big-ip_afmMatch15.1.9
OR
f5big-ip_afmMatch16.1.0
OR
f5big-ip_afmMatch16.1.1
OR
f5big-ip_afmMatch16.1.2
OR
f5big-ip_afmMatch16.1.3
OR
f5big-ip_afmMatch16.1.4
OR
f5big-ip_afmMatch16.1.5
OR
f5big-ip_afmMatch17.1.0
OR
f5big-ip_afmMatch17.1.1
OR
f5big-ip_analyticsMatch15.1.0
OR
f5big-ip_analyticsMatch15.1.1
OR
f5big-ip_analyticsMatch15.1.10
OR
f5big-ip_analyticsMatch15.1.2
OR
f5big-ip_analyticsMatch15.1.3
OR
f5big-ip_analyticsMatch15.1.4
OR
f5big-ip_analyticsMatch15.1.5
OR
f5big-ip_analyticsMatch15.1.6
OR
f5big-ip_analyticsMatch15.1.7
OR
f5big-ip_analyticsMatch15.1.8
OR
f5big-ip_analyticsMatch15.1.9
OR
f5big-ip_analyticsMatch16.1.0
OR
f5big-ip_analyticsMatch16.1.1
OR
f5big-ip_analyticsMatch16.1.2
OR
f5big-ip_analyticsMatch16.1.3
OR
f5big-ip_analyticsMatch16.1.4
OR
f5big-ip_analyticsMatch16.1.5
OR
f5big-ip_analyticsMatch17.1.0
OR
f5big-ip_analyticsMatch17.1.1
OR
f5big-ip_apmMatch15.1.0
OR
f5big-ip_apmMatch15.1.1
OR
f5big-ip_apmMatch15.1.10
OR
f5big-ip_apmMatch15.1.2
OR
f5big-ip_apmMatch15.1.3
OR
f5big-ip_apmMatch15.1.4
OR
f5big-ip_apmMatch15.1.5
OR
f5big-ip_apmMatch15.1.6
OR
f5big-ip_apmMatch15.1.7
OR
f5big-ip_apmMatch15.1.8
OR
f5big-ip_apmMatch15.1.9
OR
f5big-ip_apmMatch16.1.0
OR
f5big-ip_apmMatch16.1.1
OR
f5big-ip_apmMatch16.1.2
OR
f5big-ip_apmMatch16.1.3
OR
f5big-ip_apmMatch16.1.4
OR
f5big-ip_apmMatch16.1.5
OR
f5big-ip_apmMatch17.1.0
OR
f5big-ip_apmMatch17.1.1
OR
f5big-ip_asmMatch15.1.0
OR
f5big-ip_asmMatch15.1.1
OR
f5big-ip_asmMatch15.1.10
OR
f5big-ip_asmMatch15.1.2
OR
f5big-ip_asmMatch15.1.3
OR
f5big-ip_asmMatch15.1.4
OR
f5big-ip_asmMatch15.1.5
OR
f5big-ip_asmMatch15.1.6
OR
f5big-ip_asmMatch15.1.7
OR
f5big-ip_asmMatch15.1.8
OR
f5big-ip_asmMatch15.1.9
OR
f5big-ip_asmMatch16.1.0
OR
f5big-ip_asmMatch16.1.1
OR
f5big-ip_asmMatch16.1.2
OR
f5big-ip_asmMatch16.1.3
OR
f5big-ip_asmMatch16.1.4
OR
f5big-ip_asmMatch16.1.5
OR
f5big-ip_asmMatch17.1.0
OR
f5big-ip_asmMatch17.1.1
OR
f5big-ip_dnsMatch15.1.0
OR
f5big-ip_dnsMatch15.1.1
OR
f5big-ip_dnsMatch15.1.10
OR
f5big-ip_dnsMatch15.1.2
OR
f5big-ip_dnsMatch15.1.3
OR
f5big-ip_dnsMatch15.1.4
OR
f5big-ip_dnsMatch15.1.5
OR
f5big-ip_dnsMatch15.1.6
OR
f5big-ip_dnsMatch15.1.7
OR
f5big-ip_dnsMatch15.1.8
OR
f5big-ip_dnsMatch15.1.9
OR
f5big-ip_dnsMatch16.1.0
OR
f5big-ip_dnsMatch16.1.1
OR
f5big-ip_dnsMatch16.1.2
OR
f5big-ip_dnsMatch16.1.3
OR
f5big-ip_dnsMatch16.1.4
OR
f5big-ip_dnsMatch16.1.5
OR
f5big-ip_dnsMatch17.1.0
OR
f5big-ip_dnsMatch17.1.1
OR
f5big-ipMatch15.1.0
OR
f5big-ipMatch15.1.1
OR
f5big-ipMatch15.1.10
OR
f5big-ipMatch15.1.2
OR
f5big-ipMatch15.1.3
OR
f5big-ipMatch15.1.4
OR
f5big-ipMatch15.1.5
OR
f5big-ipMatch15.1.6
OR
f5big-ipMatch15.1.7
OR
f5big-ipMatch15.1.8
OR
f5big-ipMatch15.1.9
OR
f5big-ipMatch16.1.0
OR
f5big-ipMatch16.1.1
OR
f5big-ipMatch16.1.2
OR
f5big-ipMatch16.1.3
OR
f5big-ipMatch16.1.4
OR
f5big-ipMatch16.1.5
OR
f5big-ipMatch17.1.0
OR
f5big-ipMatch17.1.1
OR
f5big-ip_link_controllerMatch15.1.10
OR
f5big-ip_link_controllerMatch15.1.7
OR
f5big-ip_link_controllerMatch15.1.8
OR
f5big-ip_link_controllerMatch15.1.9
OR
f5big-ip_link_controllerMatch16.1.0
OR
f5big-ip_link_controllerMatch16.1.1
OR
f5big-ip_link_controllerMatch16.1.2
OR
f5big-ip_link_controllerMatch16.1.3
OR
f5big-ip_link_controllerMatch16.1.4
OR
f5big-ip_link_controllerMatch16.1.5
OR
f5big-ip_link_controllerMatch17.1.0
OR
f5big-ip_link_controllerMatch17.1.1
OR
f5big-ip_ltmMatch15.1.0
OR
f5big-ip_ltmMatch15.1.1
OR
f5big-ip_ltmMatch15.1.10
OR
f5big-ip_ltmMatch15.1.2
OR
f5big-ip_ltmMatch15.1.3
OR
f5big-ip_ltmMatch15.1.4
OR
f5big-ip_ltmMatch15.1.5
OR
f5big-ip_ltmMatch15.1.6
OR
f5big-ip_ltmMatch15.1.7
OR
f5big-ip_ltmMatch15.1.8
OR
f5big-ip_ltmMatch15.1.9
OR
f5big-ip_ltmMatch16.1.0
OR
f5big-ip_ltmMatch16.1.1
OR
f5big-ip_ltmMatch16.1.2
OR
f5big-ip_ltmMatch16.1.3
OR
f5big-ip_ltmMatch16.1.4
OR
f5big-ip_ltmMatch16.1.5
OR
f5big-ip_ltmMatch17.1.0
OR
f5big-ip_ltmMatch17.1.1
OR
f5big-ip_pemMatch15.1.0
OR
f5big-ip_pemMatch15.1.1
OR
f5big-ip_pemMatch15.1.10
OR
f5big-ip_pemMatch15.1.2
OR
f5big-ip_pemMatch15.1.3
OR
f5big-ip_pemMatch15.1.4
OR
f5big-ip_pemMatch15.1.5
OR
f5big-ip_pemMatch15.1.6
OR
f5big-ip_pemMatch15.1.7
OR
f5big-ip_pemMatch15.1.8
OR
f5big-ip_pemMatch15.1.9
OR
f5big-ip_pemMatch16.1.0
OR
f5big-ip_pemMatch16.1.1
OR
f5big-ip_pemMatch16.1.2
OR
f5big-ip_pemMatch16.1.3
OR
f5big-ip_pemMatch16.1.4
OR
f5big-ip_pemMatch16.1.5
OR
f5big-ip_pemMatch17.1.0
OR
f5big-ip_pemMatch17.1.1
OR
f5nginx_agentMatch2.18.0
OR
f5nginx_agentMatch2.19.0
OR
f5nginx_agentMatch2.20.0
OR
f5nginx_agentMatch2.20.1
OR
f5nginx_agentMatch2.22.0
OR
f5nginx_agentMatch2.22.1
OR
f5nginx_agentMatch2.23.0
OR
f5nginx_agentMatch2.23.1
OR
f5nginx_agentMatch2.23.2
OR
f5nginx_agentMatch2.23.3
OR
f5nginx_agentMatch2.24.0
OR
f5nginx_agentMatch2.24.1
OR
f5nginx_agentMatch2.25.0
OR
f5nginx_agentMatch2.25.1
OR
f5nginx_agentMatch2.26.0
OR
f5nginx_agentMatch2.26.1
OR
f5nginx_agentMatch2.26.2
OR
f5nginx_agentMatch2.27.0
OR
f5nginx_agentMatch2.28.0
OR
f5nginx_agentMatch2.28.1
OR
f5nginx_agentMatch2.29.0
OR
f5nginx_agentMatch2.30.0
OR
f5nginx_agentMatch2.30.1
OR
f5nginx_agentMatch2.30.2
OR
f5nginx_agentMatch2.30.3
OR
f5nginx_agentMatch2.31.0
OR
f5nginx_agentMatch2.31.1
OR
f5nginx_agentMatch2.31.2
OR
f5nginx_agentMatch2.32.0
OR
f5nginx_agentMatch2.32.1
OR
f5nginx_agentMatch2.32.2
OR
f5nginx_agentMatch2.33.0
OR
f5nginx_agentMatch2.34.0
OR
f5nginx_agentMatch2.34.1
OR
f5nginx_agentMatch2.35.0
OR
f5nginx_agentMatch2.35.1
OR
f5nginx_agentMatch2.36.0
OR
f5nginx_agentMatch2.36.1
OR
f5nginx_agentMatch2.37.0
OR
f5nginx_agentMatch2.38.0
OR
f5nginx_api_connectivity_managerMatch1.0.0
OR
f5nginx_api_connectivity_managerMatch1.1.0
OR
f5nginx_api_connectivity_managerMatch1.1.1
OR
f5nginx_api_connectivity_managerMatch1.2.0
OR
f5nginx_api_connectivity_managerMatch1.3.0
OR
f5nginx_api_connectivity_managerMatch1.3.1
OR
f5nginx_api_connectivity_managerMatch1.4.0
OR
f5nginx_api_connectivity_managerMatch1.4.1
OR
f5nginx_api_connectivity_managerMatch1.5.0
OR
f5nginx_api_connectivity_managerMatch1.6.0
OR
f5nginx_api_connectivity_managerMatch1.7.0
OR
f5nginx_api_connectivity_managerMatch1.8.0
OR
f5nginx_api_connectivity_managerMatch1.9.0
OR
f5nginx_api_connectivity_managerMatch1.9.1
OR
f5nginx_api_connectivity_managerMatch1.9.2
OR
f5nginx_app_protectMatch2.4.0
OR
f5nginx_app_protectMatch3.0.0
OR
f5nginx_app_protectMatch3.1.0
OR
f5nginx_app_protectMatch4.0.1
OR
f5nginx_app_protectMatch4.1.0
OR
f5nginx_app_protectMatch4.2.0
OR
f5nginx_app_protectMatch4.3.0
OR
f5nginx_app_protectMatch4.4.0
OR
f5nginx_app_protectMatch3.11.0
OR
f5nginx_app_protectMatch3.12.1
OR
f5nginx_app_protectMatch3.12.2
OR
f5nginx_app_protectMatch4.0.0
OR
f5nginx_app_protectMatch4.1.0
OR
f5nginx_app_protectMatch4.10.0
OR
f5nginx_app_protectMatch4.2.0
OR
f5nginx_app_protectMatch4.3.0
OR
f5nginx_app_protectMatch4.4.0
OR
f5nginx_app_protectMatch4.5.0
OR
f5nginx_app_protectMatch4.6.0
OR
f5nginx_app_protectMatch4.7.0
OR
f5nginx_app_protectMatch4.8.0
OR
f5nginx_app_protectMatch4.8.1
OR
f5nginx_app_protectMatch4.9.0
OR
f5nginx_app_protectMatch5.0.0
OR
f5nginx_app_protectMatch5.1.0
OR
f5nginx_app_protectMatch5.2.0
OR
f5nginx_controllerMatch3.18.3
OR
f5nginx_controllerMatch3.19.1-apim
OR
f5nginx_controllerMatch3.19.2-apim
OR
f5nginx_controllerMatch3.19.3-apim
OR
f5nginx_controllerMatch3.19.4-apim
OR
f5nginx_controllerMatch3.19.5-apim
OR
f5nginx_controllerMatch3.19.6-apim
OR
f5nginx_controllerMatch3.20.0
OR
f5nginx_controllerMatch3.20.1
OR
f5nginx_controllerMatch3.21.0
OR
f5nginx_controllerMatch3.22.0
OR
f5nginx_controllerMatch3.22.1
OR
f5nginx_controllerMatch3.22.2
OR
f5nginx_controllerMatch3.22.3
OR
f5nginx_controllerMatch3.22.4
OR
f5nginx_controllerMatch3.22.5
OR
f5nginx_controllerMatch3.22.6
OR
f5nginx_controllerMatch3.22.7
OR
f5nginx_controllerMatch3.22.8
OR
f5nginx_controllerMatch3.22.9
OR
f5nginx_ingress_controllerMatch1.12.5
OR
f5nginx_ingress_controllerMatch2.2.1
OR
f5nginx_ingress_controllerMatch2.2.2
OR
f5nginx_ingress_controllerMatch2.3.0
OR
f5nginx_ingress_controllerMatch2.4.0
OR
f5nginx_ingress_controllerMatch2.4.1
OR
f5nginx_ingress_controllerMatch2.4.2
OR
f5nginx_ingress_controllerMatch3.0.0
OR
f5nginx_ingress_controllerMatch3.0.1
OR
f5nginx_ingress_controllerMatch3.0.2
OR
f5nginx_ingress_controllerMatch3.1.0
OR
f5nginx_ingress_controllerMatch3.1.1
OR
f5nginx_ingress_controllerMatch3.2.0
OR
f5nginx_ingress_controllerMatch3.2.1
OR
f5nginx_ingress_controllerMatch3.3.0
OR
f5nginx_ingress_controllerMatch3.3.1
OR
f5nginx_ingress_controllerMatch3.4.0
OR
f5nginx_ingress_controllerMatch3.4.1
OR
f5nginx_ingress_controllerMatch3.4.2
OR
f5nginx_ingress_controllerMatch3.5.0
OR
f5nginx_ingress_controllerMatch3.5.1
OR
f5nginx_ingress_controllerMatch3.5.2
OR
f5nginx_ingress_controllerMatch3.6.0
OR
f5nginx_ingress_controllerMatch3.6.1
OR
f5nginx_ingress_controllerMatch3.6.2
OR
f5nginx_instance_managerMatch2.10.0
OR
f5nginx_instance_managerMatch2.10.1
OR
f5nginx_instance_managerMatch2.11.0
OR
f5nginx_instance_managerMatch2.12.0
OR
f5nginx_instance_managerMatch2.13.0
OR
f5nginx_instance_managerMatch2.13.1
OR
f5nginx_instance_managerMatch2.14.0
OR
f5nginx_instance_managerMatch2.14.1
OR
f5nginx_instance_managerMatch2.15.0
OR
f5nginx_instance_managerMatch2.15.1
OR
f5nginx_instance_managerMatch2.16.0
OR
f5nginx_instance_managerMatch2.17.0
OR
f5nginx_instance_managerMatch2.17.1
OR
f5nginx_instance_managerMatch2.17.2
OR
f5nginx_instance_managerMatch2.5.0
OR
f5nginx_instance_managerMatch2.5.1
OR
f5nginx_instance_managerMatch2.6.0
OR
f5nginx_instance_managerMatch2.7.0
OR
f5nginx_instance_managerMatch2.8.0
OR
f5nginx_instance_managerMatch2.9.0
OR
f5nginx_instance_managerMatch2.9.1
OR
f5nginx_security_monitoringMatch1.0.0
OR
f5nginx_security_monitoringMatch1.1.0
OR
f5nginx_security_monitoringMatch1.2.0
OR
f5nginx_security_monitoringMatch1.3.0
OR
f5nginx_security_monitoringMatch1.4.0
OR
f5nginx_security_monitoringMatch1.5.0
OR
f5nginx_security_monitoringMatch1.6.0
OR
f5nginx_security_monitoringMatch1.7.0
OR
f5nginx_security_monitoringMatch1.7.1
OR
f5nginxMatchr27plus
OR
f5nginxMatchr28plus
OR
f5nginxMatchr29plus
OR
f5nginxMatchr30plus
OR
f5nginxMatchr31plus
OR
f5nginxMatchr32plus
OR
f5nginx_service_meshMatch1.1.0
OR
f5nginx_service_meshMatch1.2.0
OR
f5nginx_service_meshMatch1.2.1
OR
f5nginx_service_meshMatch1.3.0
OR
f5nginx_service_meshMatch1.3.1
OR
f5nginx_service_meshMatch1.4.0
OR
f5nginx_service_meshMatch1.4.1
OR
f5nginx_service_meshMatch1.5.0
OR
f5nginx_service_meshMatch1.6.0
OR
f5nginx_service_meshMatch1.7.0
OR
f5nginx_service_meshMatch2.0.0
OR
f5nginxMatch1.27.0
OR
f5nginxMatch1.28.0
OR
f5nginxMatch1.29.0
OR
f5nginxMatch1.30.0
OR
f5nginxMatch1.31.0
OR
f5nginxMatch1.31.1
OR
f5nginxMatch1.32.0
OR
f5nginxMatch1.32.1
OR
f5f5os-aMatch1.5.1
OR
f5f5os-aMatch1.5.2
OR
f5f5os-aMatch1.7.0
OR
f5f5os-cMatch1.6.0
OR
f5f5os-cMatch1.6.1
OR
f5f5os-cMatch1.6.2
OR
f5big-iq_centralized_managementMatch8.2.0
OR
f5big-iq_centralized_managementMatch8.3.0
OR
f5big-ip_ddos_hybrid_defenderMatch15.1.0
OR
f5big-ip_ddos_hybrid_defenderMatch15.1.1
OR
f5big-ip_ddos_hybrid_defenderMatch16.1.0
OR
f5big-ip_ddos_hybrid_defenderMatch17.1.0
OR
f5ssl_orchestratorMatch15.1.0
OR
f5ssl_orchestratorMatch15.1.1
OR
f5ssl_orchestratorMatch15.1.9
OR
f5ssl_orchestratorMatch16.1.0
OR
f5ssl_orchestratorMatch16.1.1
OR
f5ssl_orchestratorMatch16.1.3
OR
f5ssl_orchestratorMatch16.1.4
OR
f5ssl_orchestratorMatch17.1.0
OR
f5ssl_orchestratorMatch17.1.1
OR
f5traffix_signaling_delivery_controllerMatch5.1.0
OR
f5traffix_signaling_delivery_controllerMatch5.2.0
VendorProductVersionCPE
f5big-ip_next_central_manager20.2.0cpe:2.3:a:f5:big-ip_next_central_manager:20.2.0:*:*:*:*:*:*:*
f5big-ip_next_central_manager20.2.1cpe:2.3:a:f5:big-ip_next_central_manager:20.2.1:*:*:*:*:*:*:*
f5big-ip_next1.1.0cpe:2.3:a:f5:big-ip_next:1.1.0:*:*:*:*:*:*:*
f5big-ip_next1.1.1cpe:2.3:a:f5:big-ip_next:1.1.1:*:*:*:*:*:*:*
f5big-ip_next1.2.0cpe:2.3:a:f5:big-ip_next:1.2.0:*:*:*:*:*:*:*
f5big-ip_next1.2.1cpe:2.3:a:f5:big-ip_next:1.2.1:*:*:*:*:*:*:*
f5big-ip_next1.3.0cpe:2.3:a:f5:big-ip_next:1.3.0:*:*:*:*:*:*:*
f5big-ip_next1.3.1cpe:2.3:a:f5:big-ip_next:1.3.1:*:*:*:*:*:*:*
f5big-ip_ltm20.2.0cpe:2.3:a:f5:big-ip_ltm:20.2.0:*:*:*:*:*:*:*
f5big-ip_ltm20.2.1cpe:2.3:a:f5:big-ip_ltm:20.2.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 3921

Related

rapid7blog 3
thn 4
githubexploit 1
nvd 3
nuclei 2
cvelist 3
nessus 2
vulnrichment 3
attackerkb 1
packetstorm 1
exploitdb 1
cve 3
cisa_kev 1
zdt 1
metasploit 1
impervablog 1
rapid7blog
rapid7blog
CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)
2024-09-05 14:54:31
Metasploit Weekly Wrap-Up 06/21/2024
2024-06-21 18:53:52
Metasploit Weekly Wrap-Up 08/30/2024
2024-08-30 18:43:05
thn
thn
Apache OFBiz Update Fixes High-Severity Flaw Leading to Remote Code Execution
2024-09-06 05:22:00
CISA Flags Critical Apache OFBiz Flaw Amid Active Exploitation Reports
2024-08-28 06:50:00
New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution
2024-08-06 04:16:00
githubexploit
githubexploit
Exploit for Path Traversal in Apache Ofbiz
2024-08-07 07:12:56
nvd
nvd
CVE-2024-45195
2024-09-04 09:15:04
CVE-2024-36104
2024-06-04 08:15:10
CVE-2024-32113
2024-05-08 15:15:10
nuclei
nuclei
Apache OFBiz - Path Traversal
2024-08-05 09:15:34
Apache OFBiz Directory Traversal - Remote Code Execution
2024-06-14 16:26:31
cvelist
cvelist
CVE-2024-36104 Apache OFBiz: Path traversal leading to a RCE
2024-06-04 07:25:07
CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE
2024-05-08 14:50:07
CVE-2024-45195 Apache OFBiz: Confused controller-view authorization logic (forced browsing)
2024-09-04 08:08:59
nessus
nessus
Apache OFBiz Path Traversal (CVE-2024-32113)
2024-08-20 00:00:00
Apache OFBiz < 18.12.16 Multiple Vulnerabilities
2024-09-13 00:00:00
vulnrichment
vulnrichment
CVE-2024-45195 Apache OFBiz: Confused controller-view authorization logic (forced browsing)
2024-09-04 08:08:59
CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE
2024-05-08 14:50:07
CVE-2024-36104 Apache OFBiz: Path traversal leading to a RCE
2024-06-04 07:25:07
attackerkb
attackerkb
CVE-2024-32113
2024-05-08 00:00:00
packetstorm
packetstorm
Apache OFBiz Forgot Password Directory Traversal
2024-06-18 00:00:00
exploitdb
exploitdb
Apache OFBiz 18.12.12 - Directory Traversal
2024-05-19 00:00:00
cve
cve
CVE-2024-32113
2024-05-08 15:15:10
CVE-2024-36104
2024-06-04 08:15:10
CVE-2024-45195
2024-09-04 09:15:04
cisa_kev
cisa_kev
Apache OFBiz Path Traversal Vulnerability
2024-08-07 00:00:00
zdt
zdt
Apache OFBiz 18.12.12 - Directory Traversal Vulnerability
2024-05-19 00:00:00
metasploit
metasploit
Apache OFBiz forgotPassword/ProgramExport RCE
2024-06-14 23:41:12
impervablog
impervablog
Imperva Protects Against Critical Apache OFBiz Vulnerability (CVE-2024-45195)
2024-09-11 22:54:03

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.904

Percentile

98.9%

JSON
Related for F5:K000141002
rapid7blog3thn4githubexploit1nvd3nuclei2cvelist3nessus2vulnrichment3attackerkb1packetstorm1exploitdb1cve3cisa_kev1zdt1metasploit1impervablog1