CVE-2023-50780 - Apache ActiveMQ Artemis Log4J2 MBean File Write Vulnerability

1 month ago 19

ARTICLE AD BOX

CVE ID : CVE-2023-50780
Published : Oct. 14, 2024, 4:15 p.m. | 24 minutes ago
Description : Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could eventually allow an authenticated attacker to write arbitrary files to the filesystem and indirectly achieve RCE. Users are recommended to upgrade to version 2.29.0 or later, which fixes the issue.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Read Entire Article

CVE-2023-50780 - Apache ActiveMQ Artemis Log4J2 MBean File Write Vulnerability

ARTICLE AD BOX

Related

CVE-2024-49203 - Querydsl JPA orderBy SQL Injection

CVE-2024-52702 - MyBB Stored XSS Vulnerability

CVE-2024-48986 - Micrium mBedOS HCI Buffer Overflow Vulnerab...

Trending

Popular

CVE-2024-6343 - Zyxel ATP, USG FLEX, USG FLEX 50(W), USG20(W...

CVE-2024-5053 - Fluent Forms Mailchimp API Key Update Weakne...

CVE-2024-8367 - HM Courts & Tribunals Service Probate Back O...

CVE-2024-44946 - Linux KCM kcm_sendmsg() UAF

CVE-2024-8368 - "Code-projects Hospital Management System SQ...