CVE-2023-49070

Name of the Vulnerable Software and Affected Versions Apache OFBiz versions prior to 18.12.10

Description The issue is related to a pre-authentication remote code execution vulnerability in Apache OFBiz due to the presence of unmaintained XML-RPC. This vulnerability allows an attacker to execute arbitrary code remotely. The estimated number of potentially affected devices worldwide is around 1,920, mainly distributed in the United States, China, and other countries. There have been reports of this issue being exploited in the wild, with attackers gaining full control over the server and potentially siphoning sensitive data.

Recommendations For Apache OFBiz versions prior to 18.12.10, users are recommended to upgrade to version 18.12.10 to resolve the issue. As a temporary workaround, consider disabling the XML-RPC functionality until a patch is available. Restrict access to the vulnerable webtools/control/xmlrpc endpoint to minimize the risk of exploitation. Avoid using the vulnerable XML-RPC functionality in the affected API endpoint until the issue is resolved.