Apache · Apache Ofbiz · CVE-2026-31909
**Name of the Vulnerable Software and Affected Versions**
Apache OFBiz versions prior to 24.09.06
**Description**
An issue in Apache OFBiz allows for the exposure of sensitive information to an unauthorized actor, specifically leading to the unauthenticated disclosure of shipment label images.
**Recommendations**
Upgrade to version 24.09.06.