all InfoSec news
Attackers Focus on Apache OFBiz Bug
Malware Analysis, News and Indicators - Latest topics malware.news
Attackers are targeting a critical authentication bypass vulnerability in the Apache OFBiz open-source ERP platform, which is included in a number of third-party applications.
Apache released a fix for the vulnerability (CVE-2023-51467) in December after researchers at SonicWall discovered the bug and disclosed it to the maintainers. In the days since the fix was made available, attackers have been attempting to exploit the vulnerability, and SonciWall’s data shows more than 4,000 exploit attempts per day since the beginning of January. …
apache apache ofbiz applications attackers authentication authentication bypass bug bypass bypass vulnerability critical cve december erp fix focus maintainers ofbiz party platform researchers sonicwall targeting third third-party vulnerability