Security-next.com

「Apache OFBiz」や「.NET Framework」の脆弱性悪用に注意

米当局は、「Apache OFBiz」などにおいて悪用が確認されている4件の脆弱性について注意喚起を行った。 米サイバーセキュリティインフラストラクチャセキュリティ庁(CISA)では現地時間2025年2月4日、脆弱性4件を「悪用が確認された脆弱性カタログ(KEV)」へ ...
Dark Reading

Apache ERP Zero-Day Underscores Dangers of Incomplete Patches

Unknown groups have launched probes against a zero-day vulnerability identified in Apache's OfBiz enterprise resource planning (ERP) framework — an increasingly popular strategy of analyzing patches ...
GitHub

OmniAid-DevelopmentTeam/apache-ofbiz-framework

If you are reading this file in AsciiDoc format you may want to see it at HTML or PDF format Welcome to Apache OFBiz! A powerful top level Apache software project. OFBiz is an Enterprise Resource ...
CSOonline

New critical Apache OFBiz vulnerability patched as older flaw is actively exploited

Researchers discovered a new RCE flaw while analyzing the patch for a different flaw currently targeted by attackers. As the fifth critical flaw this year for the ERP framework, users are urged to ...
TechRadar

Critical remote code execution flaw in Apache OFBiz patched

Apache released a patch for a critical severity vulnerability in its OFBiz software. The bug is an arbitrary code execution flaw, allowing threat actors to run any code on either Windows, or Linux ...
GitHub

yash-devops4/ofbiz-framework-orginal

If you are reading this file in AsciiDoc format you may want to see it at HTML or PDF format Welcome to Apache OFBiz! A powerful top level Apache software project. OFBiz is an Enterprise Resource ...
Bleeping Computer

CISA warns about actively exploited Apache OFBiz RCE flaw

The U.S. Cybersecurity & Infrastructure Security Agency is warning of two vulnerabilities exploited in attacks, including a path traversal impacting Apache OFBiz. Apache OFBiz (Open For Business) is a ...