Apache ActiveMQ is vulnerable to Remote Code Execution.The
vulnerability may allow a remote attacker with network access to a
broker to run arbitrary shell commands by manipulating serialized
class types in the OpenWire protocol to cause the broker to
instantiate any class on the classpath. Users are
recommended to upgrade to version 5.15.16, 5.16.7, 5.17.6, or
5.18.3, which fixes this issue. (CVSS:10.0) (EPSS:1.04%) (Last
Update:2023-10-29 01:44:43)
Read more https://www.cvedetails.com/cve/CVE-2023-46604/?utm_source=rssfeed