ГлавнаяУязвимости → CVE-2026-29226
7.3высокая

CVE-2026-29226

Описание

Server-Side Request Forgery (SSRF) vulnerability in Apache OFBiz via Content component operations. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.

Затрагиваемое ПО
Apache Ofbiz
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://lists.apache.org/thread/6707wys8jxzmowxggn4cmtwwk9ygl2trhttp://www.openwall.com/lists/oss-security/2026/05/19/16