CVE-2023-46604: Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

CVE-2023-46604: Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

Open Source Security 

Posted by Christopher L. Shannon on Oct 27

Affected versions:

– Apache ActiveMQ 5.18.0 before 5.18.3
– Apache ActiveMQ 5.17.0 before 5.17.6
– Apache ActiveMQ 5.16.0 before 5.16.7
– Apache ActiveMQ before 5.15.16
– Apache ActiveMQ Legacy OpenWire Module 5.18.0 before 5.18.3
– Apache ActiveMQ Legacy OpenWire Module 5.17.0 before 5.17.6
– Apache ActiveMQ Legacy OpenWire Module 5.16.0 before 5.16.7
– Apache ActiveMQ Legacy OpenWire Module 5.8.0 before 5.15.16

Description:

Apache ActiveMQ…
 Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert