Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2023-50968

CWE-200 — Information Exposure CWE-918 — Server-Side Request Forgery (SSRF)6 documents6 sources

Severity

7.5HIGH

EPSS

83.9%

top 0.70%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apache Ofbiz Apache Software Foundation Apache Ofbiz

Timeline

PublishedDec 26

Description

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when user operates an uri call without authorizations. The same uri can be operated to realize a SSRF attack also without authorizations. Users are recommended to upgrade to version 18.12.11, which fixes this issue.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5apache_software_foundation/apache_ofbiz18.12.10

▶NVDapache/ofbiz< 18.12.11

Patches

Patch: issues.apache.org ↗Patch: issues.apache.org ↗

🔴Vulnerability Details

GHSA

GHSA-gm45-8hgv-xg5f: Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when user operates an uri call without authorizations↗2023-12-26

▶

CVEList

Apache OFBiz: Arbitrary file properties reading and SSRF attack↗2023-12-26

▶

VulnCheck

Apache OFBiz Exposure of Sensitive Information to an Unauthorized Actor↗2023

▶

💥Exploits & PoCs

Nuclei

Apache OFBiz < 18.12.11 - Server Side Request Forgery

▶

📋Vendor Advisories

Apache

Apache ofbiz: CVE-2023-50968↗

▶