A regression has been introduced in the commit preventing JMX re-bind. By passing an empty environment map to RMIConnectorServer, instead of the map that contains the authentication credentials, it leaves ActiveMQ open to the following attack: https://docs.oracle.com/javase/8/docs/technotes/guides/management/agent.html "A remote client could create a javax.management.loading.MLet MBean and use it to create new MBeans from arbitrary URLs, at least if there is no security manager. In other words, a rogue remote client could make your Java application execute arbitrary code." Mitigation: Upgrade to Apache ActiveMQ 5.15.13
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HApache Activemq
APPApache5.15.12Oracle Communications Diameter Signaling Router
APPOracle8.0.0 – 8.5.0Oracle Communications Element Manager
APPOracle8.2.0 – 8.2.4.0Oracle Communications Session Report Manager
APPOracle8.0.0 – 8.2.2Oracle Communications Session Route Manager
APPOracle8.0.0 – 8.2.2Oracle Enterprise Repository
APPOracle11.1.1.7.0Oracle Flexcube Private Banking
APPOracle12.0.012.1.0
Powiązane podatności
The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a ...
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache To...
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invoc...
Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbit...
The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and exec...