CVE Catalog

CVE-2026-47342

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.04%

12th percentile - higher than 12% of all known CVEs

Summary

A privilege escalation vulnerability in Apache OFBiz allows a low-privileged authenticated user to obtain higher privileges.

Risk Assessment

The organization may be exposed to unauthorized access to sensitive data or system functions by low-privileged users.

Recommendation

Users are recommended to upgrade to version 24.09.07, which fixes the issue.

Original NVD description (English source)

A privilege escalation vulnerability in Apache OFBiz allows a low-privileged authenticated user to obtain higher privileges This issue affects Apache OFBiz: before 24.09.07. Users are recommended to upgrade to version 24.09.07, which fixes the issue.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS