Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attack

Updated on December 27, 2023

A new zero-day security flaw has been discovered in the Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system that could be exploited to bypass authentication protections.
The vulnerability, tracked as CVE-2023-51467, resides in the login functionality and is the result of an incomplete patch for another critical vulnerability (CVE-2023-49070, CVSS score: 9.8) that was…

Read the rest of the story at Read More

Source: The Hacker News

September 25, 2024 Uncategorized

Transportation Companies Hit by Cyberatt...

January 20, 2024 Uncategorized

Microsoft’s Top Execs’ Email...

November 21, 2024 Uncategorized

Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attack

Related posts

Transportation Companies Hit by Cyberatt...

Microsoft’s Top Execs’ Email...

Over 145,000 Industrial Control Systems ...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines