CVE-2021-29200

CRITICAL NUCLEI

Apache OFBiz < 17.12.07 - Unauthenticated Remote Code Execution via Unsafe Deserialization

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-29200. PoCs published by freeide. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2021-29200, an Apache OFBiz RCE vulnerability. The exploit leverages deserialization via a crafted SOAP request to execute arbitrary commands on the target system.

Description

Apache OFBiz has unsafe deserialization prior to 17.12.07 version An unauthenticated user can perform an RCE attack

Exploits (1)

nomisec WORKING POC
by freeide · poc
https://github.com/freeide/CVE-2021-29200

This repository contains a functional exploit for CVE-2021-29200, an Apache OFBiz RCE vulnerability. The exploit leverages deserialization via a crafted SOAP request to execute arbitrary commands on the target system.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Apache OFBiz
No auth needed
Prerequisites: VPS with JRMPListener and netcat set up · ysoserial.jar in the same directory as the script
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

Apache OFBiz < 17.12.07 - Arbitrary Code Execution
CRITICALby your3cho
Shodan: html:"OFBiz" || http.html:"ofbiz" || ofbiz.visitor=
FOFA: app="Apache_OFBiz" || body="ofbiz" || app="apache_ofbiz"

References (7)

Core 7
Core References
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2021/04/27/4

Scores

CVSS v3 9.8
EPSS 0.5537
EPSS Percentile 98.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-502
Status published
Products (1)
apache/ofbiz < 17.12.07
Published Apr 27, 2021
Tracked Since Feb 18, 2026