ubuntu-cve-2023-46604
Vulnerability from osv_ubuntu
Published
2023-10-27 15:15
Modified
2025-10-10 15:12
Summary
Details

The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.


{
  "affected": [
    {
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "activemq",
            "binary_version": "5.13.2+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "libactivemq-java",
            "binary_version": "5.13.2+dfsg-2ubuntu0.1~esm1"
          }
        ],
        "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog"
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:16.04:LTS",
        "name": "activemq",
        "purl": "pkg:deb/ubuntu/activemq@5.13.2+dfsg-2ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/xenial"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.13.2+dfsg-2ubuntu0.1~esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.6.0+dfsg1-4+deb8u1ubuntu1",
        "5.6.0+dfsg1-5",
        "5.13.2+dfsg-2"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "activemq",
            "binary_version": "5.15.8-2~18.04.1~esm1"
          },
          {
            "binary_name": "libactivemq-java",
            "binary_version": "5.15.8-2~18.04.1~esm1"
          }
        ],
        "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog"
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:18.04:LTS",
        "name": "activemq",
        "purl": "pkg:deb/ubuntu/activemq@5.15.8-2~18.04.1~esm1?arch=source\u0026distro=esm-apps/bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.15.8-2~18.04.1~esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.14.5-3",
        "5.15.2-2",
        "5.15.3-2",
        "5.15.8-2~18.04"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "activemq",
            "binary_version": "5.15.11-1ubuntu0.1~esm1"
          },
          {
            "binary_name": "libactivemq-java",
            "binary_version": "5.15.11-1ubuntu0.1~esm1"
          }
        ],
        "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog"
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:20.04:LTS",
        "name": "activemq",
        "purl": "pkg:deb/ubuntu/activemq@5.15.11-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/focal"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.15.11-1ubuntu0.1~esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.15.10-1",
        "5.15.11-1"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "activemq",
            "binary_version": "5.16.1-1ubuntu0.1"
          },
          {
            "binary_name": "libactivemq-java",
            "binary_version": "5.16.1-1ubuntu0.1"
          }
        ],
        "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog"
      },
      "package": {
        "ecosystem": "Ubuntu:22.04:LTS",
        "name": "activemq",
        "purl": "pkg:deb/ubuntu/activemq@5.16.1-1ubuntu0.1?arch=source\u0026distro=jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.16.1-1ubuntu0.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.16.1-1"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "activemq",
            "binary_version": "5.16.1-1ubuntu0.1~esm1"
          },
          {
            "binary_name": "libactivemq-java",
            "binary_version": "5.16.1-1ubuntu0.1~esm1"
          }
        ],
        "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog"
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:22.04:LTS",
        "name": "activemq",
        "purl": "pkg:deb/ubuntu/activemq@5.16.1-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.16.1-1ubuntu0.1~esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.16.1-1"
      ]
    }
  ],
  "aliases": [],
  "details": "The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary  shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade  both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.",
  "id": "UBUNTU-CVE-2023-46604",
  "modified": "2025-10-10T15:12:40Z",
  "published": "2023-10-27T15:15:00Z",
  "references": [
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2023-46604"
    },
    {
      "type": "REPORT",
      "url": "https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txt"
    },
    {
      "type": "REPORT",
      "url": "http://www.openwall.com/lists/oss-security/2023/10/27/5"
    },
    {
      "type": "REPORT",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-46604"
    },
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-6910-1"
    },
    {
      "type": "REPORT",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
    },
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-7268-1"
    }
  ],
  "related": [
    "USN-6910-1",
    "USN-7268-1"
  ],
  "schema_version": "1.7.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "high",
      "type": "Ubuntu"
    }
  ],
  "upstream": [
    "CVE-2023-46604"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…