Apache OFBiz

Apache OFBiz team patches critical RCE vulnerability (CVE-2024-45195)

September 6, 2024

For the fourth time in the last five months, Apache OFBiz users have been advised to upgrade their installations to fix a critical flaw (CVE-2024-45195) that could lead to …

Critical Apache OFBiz pre-auth RCE flaw fixed, update ASAP! (CVE-2024-38856)

August 5, 2024

CVE-2024-38856, an incorrect authorization vulnerability affecting all but the latest version of Apache OFBiz, may be exploited by remote, unauthenticated attackers to execute …

Resources

Webinar: The BAS Summit 2025: Redefining Attack Simulation through AI
Download: Cyber defense guide for the financial sector
Webinar: Why AI and SaaS are now the same attack surface

Don't miss

Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352)
Microsoft revokes 200 certs used to sign malicious Teams installers
A new approach to blockchain spam: Local reputation over global rules
SAP zero-day wake-up call: Why ERP systems need a unified defense
“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)

Apache OFBiz

Apache OFBiz team patches critical RCE vulnerability (CVE-2024-45195)

Critical Apache OFBiz pre-auth RCE flaw fixed, update ASAP! (CVE-2024-38856)

Featured news

Resources

Don't miss