CVE-2024-38856CISA KEV: Actively Exploited

Apache OFBiz Incorrect Authorization Vulnerability

Published Aug 27, 2024·Updated Aug 27, 2024

Description

Apache OFBiz contains an incorrect authorization vulnerability that could allow remote code execution via a Groovy payload in the context of the OFBiz user process by an unauthenticated attacker.

Public Exploits & PoCs10 found

PoC: CVE-2024-38856_Scanner

Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)

2

PoC: CVE-2024-38856-Apache-OFBiz

CVE-2024-38856: Apache OFBiz remote code execution Scanner & Exploit

PoC: Apache-OFBiz-Exploit

Exploit for Apache OFBiz - CVE-2024-38856

PoC: CVE-2024-38856_Scen

Tentang Pemindai & Eksploitasi Apache OFBiz RCE (CVE-2024-38856)

PoC: cve-2024-38856-poc

CVE-2024-38856 是 Apache OFBiz 中的一个严重漏洞,允许未经身份验证的攻击者在受影响的系统上执行任意代码。

PoC: CVE-2024-38856-RCE

Apache OFBiz CVE-2024-38856

PoC: CVE-2024-38856

Nuclei template to scan for Apache Ofbiz affecting versions before 18.12.15

PoC: CVE-2024-38856-EXP

CVE-2024-38856 Exploit

PoC: CVE-2024-38856-ApacheOfBiz

Exploit for CVE-2024-38856 affecting Apache OFBiz versions before 18.12.15

PoC: CVE-2024-38856

Perform With Massive Apache OFBiz Zero-Day Scanner & RCE

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free