Apache OFBiz Webtools Improper Auth Pre-24.09.06
CVE-2026-45187 Published on May 19, 2026

Apache OFBiz: Improper Authorization in Scheduled Job Creation Allows Low-Privileged Users to Submit System Jobs
Improper Authorization vulnerability in Apache OFBiz Webtools. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue.

Vendor Advisory NVD

Weakness Type

What is an AuthZ Vulnerability?

The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.

CVE-2026-45187 has been classified to as an AuthZ vulnerability or weakness.

Products Associated with CVE-2026-45187

Want to know whenever a new CVE is published for Apache OFBiz? stack.watch will email you.

Apache OFBiz

Affected Versions

Apache Software Foundation Apache OFBiz:

Before 24.09.06 is affected.

Apache OFBiz Webtools Improper Auth Pre-24.09.06CVE-2026-45187 Published on May 19, 2026

Weakness Type

What is an AuthZ Vulnerability?

Products Associated with CVE-2026-45187

Affected Versions

Apache OFBiz Webtools Improper Auth Pre-24.09.06
CVE-2026-45187 Published on May 19, 2026