Apache OFBiz users urged to install latest version fast

Software developers using the open-source Apache OFBiz enterprise resource management and e-commerce suite are being urged to apply the latest security update after the discovery of a critical vulnerability that could allow a business to be hacked.

In technical terms, the vulnerability is called a Java serialization problem. Briefly, serialization converts a Java object into a byte stream which can be saved into a file on a local disk or sent over the network to any other machine. Deserialization reverses the process, restoring the serialized byte stream to an object again. This particular bug in OFBiz allows unsafe deserialization in versions prior to 17.12.06.

β€œAn unauthenticated attacker can use this vulnerability to successfully take over Apache OFBiz,” notes the description…


Source link

About coldfusion

Check Also

Riverhead green-lights EPCAL drag racing events for 2022

Drag racing at the Calverton Enterprise Park got a green light for 2022 from the …

Leave a Reply

Your email address will not be published. Required fields are marked *