CVE-2023-46604

CriticalHigh RiskPatched

The Java OpenWire protocol marshaller is vulnerable to Re...

CVSS Score

10.0

Severity

Critical

Available Package Updates

Mavenorg.apache.activemq:activemq-clientv5.15.16View on Maven
Mavenorg.apache.activemq:activemq-openwire-legacyv5.15.16View on Maven

Fixed in: org.apache.activemq:activemq-client (Maven): 5.15.16; org.apache.activemq:activemq-openwire-legacy (Maven): 5.15.16

Exploit Intelligence

Weaponized

Yes

Detectable

Yes

CISA KEV

Not Listed

Risk Level

High Risk

Detection Sources

osv

Exploit Sources

github_poccisa_kev

Get the Full Explanation

Sign in to get the plain English explanation including what systems are affected, how to fix it, and vendor advisory links.

Sign in for Full DetailsView on NVD

Published: 10/27/2023