On December 26, researchers from SonicWall Capture Labs discovered an authentication bypass vulnerability in Apache OFBiz, tracked as CVE-2023-51467. This bug has a CVSS score of 9.8 and allows attackers to achieve server-side request forgery (SSRF) by bypassing the program’s authentication. This vulnerability follows one discovered earlier this month, tracked as CVE-2023-49070, which enables pre-authentication […]
The post Imperva defends customers against recent vulnerabilities in Apache OFBiz appeared first on Blog.
This article has been indexed from Blog