Threat Library

App.Exploit.CVE-2024-36104

Last updated: July 10th, 2024

App.Exploit.CVE-2024-36104 is a Path Traversal vulnerability in Apache OFBiz due to improper limitation of a pathname to a restricted directory . This issue affects Apache OFBiz: before 18.12.14. Users are recommended to upgrade to version 18.12.14, which fixes the issue.

Engine: IPS (web)
Product:ZIA, ZPA + ZIA
Detection Details:
ConnectionCategoryTypeDetection IDSeverityScore
InboundMALICIOUS URLURL222769High88