← voltar
CVE-2023-46604

Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

CVSS 10 CRITICALEPSS 99.7%● KEVCWE-502
Em resumo

O Apache ActiveMQ possui uma falha crítica no protocolo OpenWire que permite que atacantes remotos executem comandos arbitrários nos servidores ou clientes. Qualquer pessoa com acesso à rede pode explorar isso.

Detalhe técnico

A desserialização não limitada no marshaller do protocolo OpenWire (CWE-502) permite execução remota de código quando um atacante manipula tipos de classe serializados para instanciar classes arbitrárias do classpath no broker ou cliente. Não há requisito de autenticação; o impacto inclui compromisso total do sistema.

Resumo gerado e traduzido por IA a partir da descrição oficial.
The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H
Produtos afetados
Apache Software Foundation · Apache ActiveMQApache Software Foundation · Apache ActiveMQ Legacy OpenWire Module
PoCs públicas encontradas38
githubgithub.com/SaumyajeetDas/CVE-2023-46604-RCE-Reverse-Shell-Apache-ActiveMQ126githubgithub.com/Catherines77/ActiveMQ-EXPtools77githubgithub.com/Arlenhiack/ActiveMQ-RCE-Exploit43githubgithub.com/evkl1d/CVE-2023-4660440githubgithub.com/trganda/ActiveMQ-RCE28githubgithub.com/duck-sec/CVE-2023-46604-ActiveMQ-RCE-pseudoshell18githubgithub.com/justdoit-cai/CVE-2023-46604-Apache-ActiveMQ-RCE-exp5githubgithub.com/vulncheck-oss/cve-2023-466044githubgithub.com/h3x3h0g/ActiveMQ-RCE-CVE-2023-46604-Write-up3githubgithub.com/NKeshawarz/CVE-2023-46604-RCE3githubgithub.com/mrpentst/CVE-2023-466042githubgithub.com/RockyDesigne/SSP-Assignment-3-RCEYouLater2githubgithub.com/dcm2406/CVE-Lab2githubgithub.com/LiritoShawshark/CVE-2023-46604_ActiveMQ_RCE_Recurrence2githubgithub.com/stegano5/ExploitScript-CVE-2023-466041githubgithub.com/minhangxiaohui/ActiveMQ_CVE-2023-466041githubgithub.com/pulentoski/CVE-2023-466041githubgithub.com/skrkcb2/CVE-2023-466041githubgithub.com/vaishnavucv/Project-Vuln-Detection-N-Mitigation_1011githubgithub.com/tomasmussi/activemq-cve-2023-466040githubgithub.com/CrackerCat/ActiveMQ_RCE_Pro_Max0githubgithub.com/vjayant93/CVE-2023-46604-POC0githubgithub.com/thinkycx/activemq-rce-cve-2023-466040githubgithub.com/mranv/honeypot.rs0githubgithub.com/trnguyen03/activemq-ids-ips-lab0githubgithub.com/cuanh2333/CVE-2023-466040githubgithub.com/REGGYRAIDER/CVE-2023-46604-RCE0githubgithub.com/CCIEVoice2009/CVE-2023-466040githubgithub.com/aelshimony-cloud/OpenWire-CVE-2023-46604-Investigation0githubgithub.com/pavanaa4k/CVE-2023-46604-LAB0githubgithub.com/nitzanoligo/CVE-2023-46604-demo0githubgithub.com/sangrok-jeon/CVE-2023-46604-Analysis0githubgithub.com/mkdemir/activemq-lockbit-analysis0githubgithub.com/Navya240/intel471-threat-hunting-cve-2023-466040githubgithub.com/KlaasStessens/CVE-2023-466040githubgithub.com/dcm2406/CVE-2023-466040githubgithub.com/Mudoleto/Broker_ApacheMQ0cve_referencepacketstormsecurity.com/files/175676/Apache-ActiveMQ-Unauthenticated-Remote-Code-Execution.htmlnão verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txthttp://seclists.org/fulldisclosure/2024/Apr/18https://lists.debian.org/debian-lts-announce/2023/11/msg00013.htmlhttps://lists.debian.org/debian-lts-announce/2024/10/msg00027.htmlhttps://packetstormsecurity.com/files/175676/Apache-ActiveMQ-Unauthenticated-Remote-Code-Execution.htmlhttps://security.netapp.com/advisory/ntap-20231110-0010/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-46604https://www.openwall.com/lists/oss-security/2023/10/27/5