The Shadowserver Foundation has observed attempts to exploit a critical vulnerability in the Apache OFBiz open source enterprise resource planning (ERP) system.
Numerous ERP and other kinds of projects, such as the popular Atlassian Jira issue tracking and project management software, rely on Apache OFBiz. Not long after SonicWall revealed details of another OFBiz bug, CVE-2023-51467, the nonprofit cybersecurity group Shadowserver reported seeing indications of in-the-wild exploitation for an Apache OFBiz vulnerability tracked as CVE-2023-49070.
On December 26, SonicWall released technical details. The company’s researchers found CVE-2023-51467 during a root cause analysis of CVE-2023-49070.
Read More: Critical Apache OFBiz Vulnerability in Attacker Crosshairs
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.