The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.
Apache ActiveMQ es vulnerable a la ejecución remota de código. La vulnerabilidad puede permitir que un atacante remoto con acceso a la red de un corredor ejecute comandos de shell arbitrarios manipulando tipos de clases serializadas en el protocolo OpenWire para hacer que el corredor cree una instancia de cualquier clase en el classpath. Se recomienda a los usuarios actualizar a la versión 5.15.16, 5.16.7, 5.17.6 o 5.18.3, que soluciona este problema.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
| Attack Vector | NETWORK |
|---|---|
| Attack Complexity | LOW |
| Privileges Required | NONE |
| User Interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Availability Impact | HIGH |
| Source | Type | Description |
|---|---|---|
| [email protected] | Secondary |
en
CWE-502
|
| Vendor | Product | Version | Update | Type |
|---|---|---|---|---|
| apache | activemq | * | <built-in method update of dict object at 0x72a9b0d78e00> | Application |
| apache | activemq | * | <built-in method update of dict object at 0x72a9b0797ec0> | Application |
| apache | activemq | * | <built-in method update of dict object at 0x72a9a39c66c0> | Application |
| apache | activemq | * | <built-in method update of dict object at 0x72a9a39c7e40> | Application |
| apache | activemq_legacy_openwire_module | * | <built-in method update of dict object at 0x72a9b0d7b940> | Application |
| apache | activemq_legacy_openwire_module | * | <built-in method update of dict object at 0x72a9b0d7acc0> | Application |
| apache | activemq_legacy_openwire_module | * | <built-in method update of dict object at 0x72a9b0db6d40> | Application |
| apache | activemq_legacy_openwire_module | * | <built-in method update of dict object at 0x72a9b0cdc2c0> | Application |
| debian | debian_linux | 10.0 | <built-in method update of dict object at 0x72a9b0db7700> | Operating System |
| debian | debian_linux | 11.0 | <built-in method update of dict object at 0x72a9b0d7b180> | Operating System |
| netapp | e-series_santricity_unified_manager | - | <built-in method update of dict object at 0x72a9b0db6300> | Application |
| netapp | e-series_santricity_web_services_proxy | - | <built-in method update of dict object at 0x72a99a766ec0> | Application |
| netapp | santricity_storage_plugin | - | <built-in method update of dict object at 0x72a9a39c6100> | Application |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:a:apache:activemq_legacy_openwire_module:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:apache:activemq_legacy_openwire_module:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:apache:activemq_legacy_openwire_module:*:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:apache:activemq_legacy_openwire_module:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:a:netapp:e-series_santricity_unified_manager:-:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:netapp:e-series_santricity_web_services_proxy:-:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:netapp:santricity_storage_plugin:-:*:*:*:*:vcenter:*:* |