Critical Apache OFBiz Vulnerability CVE-2024-38856 Identified and Actively Exploited

Patch this Critical Safeguard for Privileged Passwords Authentication Bypass Flaw
CISA Adds Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and MSSQL Server Bugs to its KEV Catalog
Clever ‘GitHub Scanner’ Campaign Abusing Repositories to Push Malware
Germany Seizes 47 Crypto Exchanges Used by Ransomware Gangs
Microsoft Entra ID’s Administrative Units Weaponized to Gain Stealthy Persistence

Patch this Critical Safeguard for Privileged Passwords Authentication Bypass Flaw
CISA Adds Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and MSSQL Server Bugs to its KEV Catalog
Clever ‘GitHub Scanner’ Campaign Abusing Repositories to Push Malware
Germany Seizes 47 Crypto Exchanges Used by Ransomware Gangs
Microsoft Entra ID’s Administrative Units Weaponized to Gain Stealthy Persistence

_ 28 août 2024_ _ 0 Comments

Critical Apache OFBiz Vulnerability CVE-2024-38856 Identified and Actively Exploited

This flaw allows attackers to execute remote code without authentication, posing a serious risk. Versions up to 18.12.14 are affected, and organizations are advised to upgrade to version 18.12.15 to mitigate the issue.

Author

La meilleure date pour vous?

Quelle heure vous conviendrait?

La meilleure date pour vous?

Quelle heure vous conviendrait?

Critical Apache OFBiz Vulnerability CVE-2024-38856 Identified and Actively Exploited

Réservez une DEMO / POV

La meilleure date pour vous?

Quelle heure vous conviendrait?

Réservez une DEMO / POV

La meilleure date pour vous?

Quelle heure vous conviendrait?

Microsoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 Copilot

Cryptojacking via CVE-2023-22527: Dissecting a Full-Scale Cryptomining Ecosystem