A vulnerability marked as critical has been reported in Apache OFBiz up to 24.09.05 . The impacted element is an unknown function. The manipulation leads to improper authentication. This vulnerability is listed as CVE-2026-31387 . The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.