Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attacks

Apache OfBiz ERP

A new zero-day security flaw has been discovered in Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system that can be exploited to bypass authentication protections.

The vulnerability, tracked as CVE-2023-51467is located in the login functionality and is the result of an incomplete patch for another critical vulnerability (CVE-2023-49070CVSS Score: 9.8) which was released earlier this month.

“The safety precautions taken to patch CVE-2023-49070, the root issue remained intact and therefore the authentication bypass was still present,” said the SonicWall Capture Labs threat research team, which discovered the bug, said in a statement shared with The Hacker News.

Apache OfBiz ERP

CVE-2023-49070 refers to a pre-authenticated remote code execution flaw that affects versions before 18.12.10, which, if successfully exploited, could allow threat actors to take full control of the server and siphon sensitive data . This is caused by an outdated XML-RPC component within Apache OFBiz.

According to SonicWall, CVE-2023-51467 can be triggered using empty and invalid USERNAME and PASSWORD parameters in an HTTP request to return an authentication success message, effectively bypassing security and allowing a threat actor to gain access access otherwise unauthorized internal sources.

The attack revolves around the fact that the “requirePasswordChange” parameter is set to “Y” (that is, yes) in the URL, which trivially bypasses authentication regardless of the values ​​passed in the username and password fields.

“The vulnerability allows attackers to bypass authentication to achieve a simple Server-Side Request Forgery (SSRF),” according to a description of the flaw in the NIST National Vulnerability Database (NVD).

Users who rely on Apache OFbiz to update to version 18.12.11 or as soon as possible later to mitigate any threats.



#Critical #ZeroDay #Apache #OfBiz #ERP #System #Exposes #Businesses #Attacks

Total
0
Shares
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments
Previous Post
Zero-Day in Barracuda's ESG Appliances

Chinese Hackers Exploited New Zero-Day in Barracuda’s ESG Devices

Next Post
Rugmi Malware Loader

New Rugmi Malware Loader is growing with hundreds of daily detections

Related Posts