Apache Activemq Legacy Openwire Module
By the Year
In 2024 there have been 0 vulnerabilities in Apache Activemq Legacy Openwire Module . Last year Activemq Legacy Openwire Module had 1 security vulnerability published. Right now, Activemq Legacy Openwire Module is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 1 | 9.80 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Activemq Legacy Openwire Module vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Apache Activemq Legacy Openwire Module Security Vulnerabilities
The Java OpenWire protocol marshaller is vulnerable to Remote Code
Execution
CVE-2023-46604
9.8 - Critical
- October 27, 2023
The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.
Marshaling, Unmarshaling
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Apache Activemq Legacy Openwire Module or by Apache? Click the Watch button to subscribe.