CVE-2022-29063 — Deserialization of Untrusted Data in Apache Ofbiz

CWE-502 — Deserialization of Untrusted Data4 documents4 sources

Severity

9.8CRITICALNVD

EPSS

20.8%

top 4.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Ofbiz Apache Software Foundation Apache Ofbiz

Timeline

PublishedSep 2

Latest updateSep 3

Description

The Solr plugin of Apache OFBiz is configured by default to automatically make a RMI request on localhost, port 1099. In version 18.12.05 and earlier, by hosting a malicious RMI server on localhost, an attacker may exploit this behavior, at server start-up or on a server restart, in order to run arbitrary code. Upgrade to at least 18.12.06 or apply patches at https://issues.apache.org/jira/browse/OFBIZ-12646.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDapache/ofbiz< 18.12.06

▶CVEListV5apache_software_foundation/apache_ofbizApache OFBiz — 18.12.05

Patches

Patch: www.openwall.com ↗Patch: lists.apache.org ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-5qfw-44p9-rc2g: The Solr plugin of Apache OFBiz is configured by default to automatically make a RMI request on localhost, port 1099↗2022-09-03

▶

CVEList

Java Deserialization via RMI Connection from the Solr plugin of Apache OFBiz↗2022-09-02

▶

📋Vendor Advisories

Apache

Apache ofbiz: CVE-2022-29063↗

▶