Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2021-26295

Published: 22/03/2021 Updated: 07/11/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 670
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Ofbiz

Vulnerability Summary

Apache OFBiz has unsafe deserialization before 17.12.06. An unauthenticated attacker can use this vulnerability to successfully take over Apache OFBiz.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache ofbiz

Exploits

Exploit DB: Apache OFBiz SOAP Java Deserialization
This Metasploit module exploits a Java deserialization vulnerability in Apache OFBiz's unauthenticated SOAP endpoint /webtools/control/SOAPService for versions prior to 171206 ...

Github Repositories

https://github.com/MrMeizhi/DriedMango

GUI Exploit Tool For RedTeam

0x00 Introduction 一款GUI漏洞利用工具,主要辅助红队进行复杂的攻击场景的利用,如部分非http协议和异步漏洞利用。目前该版本开发较为仓促,后续会频繁迭代。 目前支持的漏洞有: Fastjson漏洞回显 Jmxrmi漏洞回显 RmiServer漏洞回显 ApacheOfbiz漏洞利用回显(CVE-2021-26295,CVE-2020-9496)

https://github.com/TheTh1nk3r/exp_hub

漏洞复现与poc收集,CVE-2021-21975,cve-2021-22005,CVE-2021-26295,VMware vCenter任意文件读取

0x01 注 该项目仅供合法的渗透测试以及爱好者参考学习,请各位遵守《中华人民共和国网络安全法》以及相应地方的法律,禁止使用该项目进行违法操作,否则自行承担相关责任! 0x02 VMware CVE-2021-21975 VMware vRealize Operations Manager SSRF漏洞 vCenter任意文件读取 VMware vCenter任意文件读取漏洞 vCe

https://github.com/yumusb/CVE-2021-26295-POC

CVE-2021-26295-POC 利用DNSlog进行CVE-2021-26295的漏洞验证。 使用 poc: 将目标放于 targettxt 后运行python pocpy即可。(Jdk环境需<12,否则ysoserial不能正常生成payload) exp: python exppy baiducom 然后进入命令执行界面(无回显) 仅供学习交流,请勿用于其他用途。

https://github.com/Henry4E36/Apache-OFBiz-Vul

Apache-OFBiz 反序列化漏洞

Apache-OFBiz-Vul Apache-OFBiz 反序列化漏洞 #USE python3 CVE-2021-26295py #下载ysoserialjar文件放置在该脚本同目录下。

https://github.com/yumusb/CVE-2021-26295

CVE-2021-26295-POC 利用DNSlog进行CVE-2021-26295的漏洞验证。 使用 poc: 将目标放于 targettxt 后运行python pocpy即可。(Jdk环境需<12,否则ysoserial不能正常生成payload) exp: python exppy baiducom 然后进入命令执行界面(无回显) 仅供学习交流,请勿用于其他用途。

https://github.com/coolyin001/CVE-2021-26295--

CVE-2021-26295-POC 利用DNSlog进行CVE-2021-26295的漏洞验证。 使用 poc:将目标放于target.txt后运行python poc.py即可。(Jdk环境需<12,否则ysoserial无法正常生成有效载荷) exp:python exp.py https://baidu.com然后进入命令执行界面(无回显)

CVE-2021-26295-- CVE-2021-26295-POC 利用DNSlog进行CVE-2021-26295的漏洞验证。 使用 poc:将目标放于targettxt后运行python pocpy即可。(Jdk环境需&lt;12,否则ysoserial无法正常生成有效载荷) exp:python exppy baiducom然后进入命令执行界面(无回显)

https://github.com/S0por/CVE-2021-26295-Apache-OFBiz-EXP

Apache OFBiz rmi反序列化EXP(CVE-2021-26295)

Apache OFBiz rmi反序列化EXP(CVE-2021-26295) 目前仅支持nc弹shell 将ysoserialjar放置在同目录下,py3运行,根据提示输入漏洞url,你的vps地址和端口 第二次使用建议删除expot 本工具仅用于安全测试,禁止未授权非法攻击站点,否则后果自负。

https://github.com/rakjong/CVE-2021-26295-Apache-OFBiz

CVE-2021-26295 Apache OFBiz rmi反序列化POC

CVE-2021-26295-Apache-OFBiz CVE-2021-26295 Apache OFBiz rmi反序列化POC 需要将ysoserialjar放置在目录下,且不能使用java的高版本

References

CWE-502https://lists.apache.org/thread.html/r3c1802eaf34aa78a61b4e8e044c214bc94accbd28a11f3a276586a31%40%3Cuser.ofbiz.apache.org%3Ehttp://packetstormsecurity.com/files/162104/Apache-OFBiz-SOAP-Java-Deserialization.htmlhttps://lists.apache.org/thread.html/r6e4579c4ebf7efeb462962e359501c6ca4045687f12212551df2d607%40%3Cnotifications.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/r0d97a3b7a14777b9e9e085b483629d2774343c4723236d1c73f43ff0%40%3Cdev.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/reccf8c8a58337ce7c035495d3d82fbc549e97036a9789a2a7d9cccf6%40%3Cdev.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/rec5e9fdcdca13099cfb29f632333f44ad1dd60d90f67b90434e4467a%40%3Cdev.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/rc9bd0d3d794dc370bc70585960841868cb29b92dcc80552b84ca2599%40%3Cnotifications.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/r3ee005dd767cd83f522719423f5e7dd316f168ddbd1dc51a13d4e244%40%3Cnotifications.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/rbe512e5ccd6b11169c6379daa1234bc805f3d53c5a38224e956295ce%40%3Cnotifications.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/r108a964764b8bd21ebd32ccd4f51c183ee80a251c105b849154a8e9d%40%3Ccommits.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/rab718cfe6468085d7560c0c1ae816841e175886199f42e36efb8d735%40%3Cnotifications.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/r078351a876ed284ba667b33aba29428d7308a5bd4df78f14a3df6661%40%3Cnotifications.ofbiz.apache.org%3Ehttps://lists.apache.org/thread.html/rbe8439b26a71fc3b429aa793c65dcc4a6e349bc7bb5010746a74fa1d%40%3Ccommits.ofbiz.apache.org%3Ehttps://nvd.nist.govhttps://packetstormsecurity.com/files/162104/Apache-OFBiz-SOAP-Java-Deserialization.htmlhttps://github.com/MrMeizhi/DriedMango
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook