Home

Description

Missing Authentication in Apache Software Foundation Apache OFBiz when using the Solr plugin. This issue affects Apache OFBiz: before 18.12.09.  Users are recommended to upgrade to version 18.12.09

PUBLISHED Reserved 2023-10-27 | Published 2023-11-07 | Updated 2024-09-04 | Assigner apache

Problem types

CWE-306 Missing Authentication for Critical Function

Product status

Default status
affected

Any version before 18.12.09
affected

Credits

Anonymous by demand finder

References

ofbiz.apache.org/download.html mitigation

ofbiz.apache.org/security.html related

ofbiz.apache.org/release-notes-18.12.09.html release-notes

lists.apache.org/thread/mm5j0rsbl22q7yb0nmb6h2swbfjbwv99 vendor-advisory

cve.org (CVE-2023-46819)

nvd.nist.gov (CVE-2023-46819)

Download JSON