CVE-2026-35086
mediumEPSS Score
0.0%
Exploitation probability in 30 days
Top 92% most likely to be exploited
Vulnerability Report
Generated by CyberWatcher
Description
Improper Control of Generation of Code ('Code Injection') vulnerability in email services of Apache OFBiz.
This issue affects Apache OFBiz: before 24.09.06.
Users are recommended to upgrade to version 24.09.06, which fixes the issue.
CWE
CWE-94Affected Products
Apache Software Foundation Apache OFBiz