CVE-2023-49070

Publication date

2023-12-05 08:05:06

Family

apache

State

PUBLISHED

Description

Pre-auth RCE in Apache Ofbiz 18.12.09. Its due to XML-RPC no longer maintained still present. This issue affects Apache OFBiz: before 18.12.10.  Users are recommended to upgrade to version 18.12.10