Lucene search
K

170 matches found

RedHat Linux
RedHat Linux
added 2023/11/15 5:7 p.m.99 views

Critical: Red Hat Security Advisory: Red Hat Fuse 7.12.1 release and security update

A minor version update from 7.12 to 7.12.1 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scori...

10CVSS7.6AI score0.99999EPSS
Exploits57References16
RedHat Linux
RedHat Linux
added 2023/11/15 5:7 p.m.7 views

activemq-openwire: OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

A flaw was found in Apache ActiveMQ, specifically the OpenWire Module. This flaw may allow a remote malicious user to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol, causing the broker to instantiate any class on the classpath. This issue happens when...

10CVSS7.3AI score0.99654EPSS
Exploits31References7
Packet Storm
Packet Storm
added 2023/11/14 12:0 a.m.945 views

Apache ActiveMQ Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache ActiveMQ Unauthenticated Remote Code Execution', 'Description' = %q This module exploits a deserialization vulnerability in the OpenWire...

10CVSS7.1AI score0.99654EPSS
Exploits31
Ivanti
Ivanti
added 2023/11/13 7:8 p.m.23 views

KB Possible Remote Exploit in ApacheMQ pertaining to OpenWire Module

Last Modified Date Mar 8, 2024 8:18:58 PM...

10CVSS7AI score0.99654EPSS
Exploits31
GithubExploit
GithubExploit
added 2023/11/12 11:26 a.m.385 views

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604 RCE Pseudoshell This script leverages CVE-2023...

10CVSS10AI score0.99654EPSS
Exploits31
0day.today
0day.today
added 2023/11/10 12:0 a.m.599 views

Apache ActiveMQ Unauthenticated Remote Code Execution Exploit

This module exploits a deserialization vulnerability in the OpenWire transport unmarshaller in Apache ActiveMQ. Affected versions include 5.18.0 through to 5.18.2, 5.17.0 through to 5.17.5, 5.16.0 through to 5.16.6, and all versions before 5.15.16. This module requires Metasploit:...

10CVSS9.8AI score0.99654EPSS
Exploits31
RedHat Linux
RedHat Linux
added 2023/11/09 11:26 p.m.7 views

activemq-openwire: OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

A flaw was found in Apache ActiveMQ, specifically the OpenWire Module. This flaw may allow a remote malicious user to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol, causing the broker to instantiate any class on the classpath. This issue happens when...

10CVSS7.3AI score0.99654EPSS
Exploits31References7
RedHat Linux
RedHat Linux
added 2023/11/09 11:26 p.m.84 views

Critical: Red Hat Security Advisory: Red Hat AMQ Broker 7.10.5 release and security update

Red Hat AMQ Broker 7.10.5 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

10CVSS7.7AI score0.99654EPSS
Exploits31References4
RedHat Linux
RedHat Linux
added 2023/11/09 11:26 p.m.6 views

activemq-openwire: OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

A flaw was found in Apache ActiveMQ, specifically the OpenWire Module. This flaw may allow a remote malicious user to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol, causing the broker to instantiate any class on the classpath. This issue happens when...

10CVSS7.3AI score0.99654EPSS
Exploits31References7
RedHat Linux
RedHat Linux
added 2023/11/09 9:28 p.m.50 views

Critical: Red Hat Security Advisory: security update jboss-amq-6/amq63-openshift container image

Red Hat AMQ 6.3 container image is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.6AI score0.99654EPSS
Exploits31References4
RedHat Linux
RedHat Linux
added 2023/11/09 9:28 p.m.6 views

activemq-openwire: OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

A flaw was found in Apache ActiveMQ, specifically the OpenWire Module. This flaw may allow a remote malicious user to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol, causing the broker to instantiate any class on the classpath. This issue happens when...

10CVSS7.3AI score0.99654EPSS
Exploits31References7
RedHat Linux
RedHat Linux
added 2023/11/09 7:11 p.m.49 views

Critical: Red Hat Security Advisory: jboss-amq-6-amq63-openshift-container security update

An update for jboss-amq-6-amq63-openshift-container is now available for RHEL-7 based Middleware Containers. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.7AI score0.99654EPSS
Exploits31References3
RedHat Linux
RedHat Linux
added 2023/11/09 12:33 p.m.52 views

Critical: Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ Fuse 6.3 R20 HF1 security and bug fix update

An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.7AI score0.99654EPSS
Exploits31References4
RedHat Linux
RedHat Linux
added 2023/11/09 12:33 p.m.6 views

activemq-openwire: OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

A flaw was found in Apache ActiveMQ, specifically the OpenWire Module. This flaw may allow a remote malicious user to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol, causing the broker to instantiate any class on the classpath. This issue happens when...

10CVSS7.3AI score0.99654EPSS
Exploits31References7
Metasploit
Metasploit
added 2023/11/06 7:52 p.m.1055 views

Apache ActiveMQ Unauthenticated Remote Code Execution

This module exploits a deserialization vulnerability in the OpenWire transport unmarshaller in Apache ActiveMQ. Affected versions include 5.18.0 through to 5.18.2, 5.17.0 through to 5.17.5, 5.16.0 through to 5.16.6, and all versions before 5.15.16. Module Options msf use...

10CVSS7.7AI score0.99654EPSS
Exploits31
GithubExploit
GithubExploit
added 2023/11/04 11:58 a.m.762 views

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604 This repository contains an exploit script and...

10CVSS9.4AI score0.99654EPSS
Exploits31
Malwarebytes
Malwarebytes
added 2023/11/03 4:41 p.m.82 views

Apache ActiveMQ vulnerability used in ransomware attacks

On the 27 October, the Apache Software Foundation ASF announced a very serious vulnerability in Apache ActiveMQ that can be used to achieve remote code execution RCE. The Cybersecurity and Infrastructure Security Agency has now added this vulnerability to its Known Exploited Vulnerabilities...

7.5CVSS10AI score0.99654EPSS
Exploits31
OSV
OSV
added 2023/11/03 11:6 a.m.4 views

OESA-2023-1778 activemq security update

The most popular and powerful open source messaging and Integration Patterns server. Security Fixes: Apache ActiveMQ is vulnerable to Remote Code Execution.The vulnerability may allow a remote attacker with network access to a broker to run arbitrary shell commands by manipulating serialized clas...

10CVSS7.6AI score0.99654EPSS
Exploits31References2
VulnCheck KEV
VulnCheck KEV
added 2023/11/02 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-46604

Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath...

10CVSS7.1AI score0.99654EPSS
Exploits31References1
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.109 views

Apache ActiveMQ < 5.15.16 / 5.16.x < 5.16.7 / 5.17.x < 5.17.6 / 5.18.x < 5.18.3 RCE

Apache ActiveMQ is vulnerable to remote code execution. The vulnerability may allow a remote attacker with network access to a broker to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath. User...

10CVSS8.4AI score0.99654EPSS
Exploits31References3
Rows per page
Query Builder