High Threat Security Alert (A23-11-03): Vulnerability in Apache ActiveMQ

Description:

Apache Software Foundation has released a security advisory to address a vulnerability in Apache ActiveMQ. A remote attacker could send a specially crafted request to exploit the vulnerability. Detailed information about the vulnerability can be found at:
https://activemq.apache.org/security-advisories.data/CVE-2023-46604

Reports indicate that the remote code execution vulnerability (CVE-2023-46604) in Apache ActiveMQ is being exploited in the wild and a proof-of-concept (PoC) code for the vulnerability is publicly available. An unauthenticated attacker with network access to the vulnerable systems may exploit the vulnerability to execute arbitrary shell commands. System administrators are advised to take immediate action to patch your affected systems or follow the recommendations provided by the product vendors to mitigate the elevated risk of cyber attacks.

Affected Systems:

• Apache ActiveMQ versions prior to 5.15.16, 5.16.7, 5.17.6 or 5.18.3
• Apache ActiveMQ Legacy OpenWire Module versions prior to 5.15.16, 5.16.7, 5.17.6 or 5.18.3

Impact:

A successful attack could lead to remote code execution on an affected system.

Recommendation:

Patches for affected systems are now available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

More Information:

• https://activemq.apache.org/security-advisories.data/CVE-2023-46604
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46604