CVE-2022-29063: Java Deserialization via RMI Connection in Apache OfBiz
CVE-2022-29063: Java Deserialization via RMI Connection in Apache OfBiz The OfBiz Solr plugin is configured by default to automatically make a RMI request on localhost, port 1099 By hosting a malicious RMI server on localhost, an attacker may exploit this behavior, at server start-up or on a server restart, in order to run arbitrary code as the user that started OfBiz and pote