What is CVE-2024-36104?

A critical path traversal vulnerability in Apache OFBiz prior to version 18.12.14 exposes organizations to high risks. Immediate patching is recommended to mitigate unauthorized access.

What is the severity of CVE-2024-36104?

CVE-2024-36104 has a severity rating of CRITICAL with a CVSS base score of 9.1.

CVE-2024-36104 | Critical Vulnerability in Apache OFBiz

CVE-2024-36104 is a critical vulnerability that affects Apache OFBiz, specifically versions prior to 18.12.14. This vulnerability allows for improper limitation of a pathname to a restricted directory, also known as a path traversal attack.

With a CVSS score of 9.1, this vulnerability signifies a severe risk to organizations using affected versions of Apache OFBiz. Attackers may leverage this vulnerability to gain unauthorized access to sensitive files and directories, potentially leading to data breaches.

Organizations should prioritize patching immediately. The recommended upgrade to version 18.12.14 addresses this vulnerability and mitigates the associated risks.

The vulnerability was published on June 4, 2024, and has been analyzed thoroughly. The urgency for defenders lies in the potential exploitation of this vulnerability, which currently has known exploits available.

Organizations using Apache OFBiz should assess their environments for this vulnerability and take necessary actions to remediate it.

By prioritizing this patch, organizations can secure their systems against this critical vulnerability.

Vulnerability Details

CVE-2024-36104 is classified under CWE-22, indicating a path traversal vulnerability. The issue resides specifically in Apache OFBiz versions earlier than 18.12.14. The vulnerability allows attackers to bypass restrictions and access unauthorized directories.

The CVSS 3.1 score of 9.1 reflects its critical nature, with a high confidentiality and integrity impact but no availability impact. The attack vector is network-based, requiring no privileges or user interaction.

Continued use of vulnerable versions exposes organizations to significant risks, making immediate action essential.

Technical Analysis

The root cause of this vulnerability lies in improper validation of user-supplied file paths. The attack vector is through the network, where an unauthenticated user can manipulate the pathname to access restricted files.

The attack complexity is low, as no special privileges or user interaction is required to exploit this vulnerability. Confidentiality and integrity impacts are high, meaning sensitive information could be exposed or modified.

Defenders should be aware that attackers may leverage this vulnerability to read sensitive files on the server, leading to potential data breaches.

Risk & Impact Analysis

Risk to organizations includes exposure of sensitive data due to unauthorized file access. The blast radius is considerable, as multiple systems may be affected if they utilize the vulnerable version.

Organizations should assess their risk posture and determine the urgency of remediation based on the CVSS score and exploitability status.

With an EPS score in the 99.77 percentile, this vulnerability is likely to be targeted in the wild, emphasizing the need for immediate attention.

Exploitation Status

Signal	Status
Known Exploit	Yes
Public PoC	Yes
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions of Apache OFBiz prior to 18.12.14 are affected by this vulnerability. Organizations using earlier versions should upgrade immediately to mitigate risks.

Mitigation & Remediation

To remediate this vulnerability, users are advised to upgrade to version 18.12.14 of Apache OFBiz. Organizations should also implement configuration hardening and network controls to further protect against potential exploits.

For additional guidance, organizations can refer to the Apache OFBiz security page and consider engaging in application security assessments to evaluate their security posture.

Detection Guidance

To detect potential exploitation, organizations should monitor logs for unusual file access patterns and validate user inputs to prevent path traversal attempts.

Behavioral anomalies indicating unauthorized access attempts should also be investigated.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2024-36104 is its representation of the ongoing challenges organizations face in securing web applications against path traversal vulnerabilities.

This vulnerability highlights the necessity for robust security measures, including regular updates and thorough security testing.

Security teams should prioritize training and awareness to recognize potential threats, reinforcing their defenses against similar vulnerabilities.

For detailed guidance on mitigating such vulnerabilities, organizations can reference the penetration testing methodology and the importance of proactive security measures.

Organizations should also consider the implications of such vulnerabilities on their overall security posture and compliance requirements.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2024-36104: Critical Vulnerability in Apache OFBiz