Vulnerability detail
Enriched intelligence for a single CVE
Critical
CVE-2023-46604
PUBLISHEDApache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack
- Vendor
- Apache Software Foundation
- Product
- Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module
- Published
- Oct 27, 2023
- EPSS
- —
Description
The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to either a Java-based OpenWire broker or client to run arbitrary shell commands by manipulating serialized class types in the OpenWire protocol to cause either the client or the broker (respectively) to instantiate any class on the classpath. Users are recommended to upgrade both brokers and clients to version 5.15.16, 5.16.7, 5.17.6, or 5.18.3 which fixes this issue.
CVSS scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:H
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- total
References
- https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txt
- https://www.openwall.com/lists/oss-security/2023/10/27/5
- https://security.netapp.com/advisory/ntap-20231110-0010/
- https://packetstormsecurity.com/files/175676/Apache-ActiveMQ-Unauthenticated-Remote-Code-Execution.html
- https://lists.debian.org/debian-lts-announce/2023/11/msg00013.html
- http://seclists.org/fulldisclosure/2024/Apr/18
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Nov 02, 2023 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Metasploit | https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/apache_activemq_rce_cve_2023_46604.rb | Apr 28, 2025 |
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/javascript/cves/2023/CVE-2023-46604.yaml | Apr 25, 2025 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
metasploit · Created Unknown
Metasploit module for CVE-2023-46604
github · Created 2024-10-16 03:31:13 UTC · 0 stars
github · Created 2023-11-16 02:36:07 UTC · 2 stars
CVE-2023-46604环境复现包
github · Created 2023-11-12 11:26:46 UTC · 16 stars
This script leverages CVE-2023046604 (Apache ActiveMQ) to generate a pseudo shell. The vulnerability allows for remote code execution due to unsafe deserialization within the OpenWire protocol.
github · Created 2023-11-09 11:27:20 UTC · 3 stars
github · Created 2023-11-08 07:48:00 UTC · 5 stars
CVE-2023-46604 Apache ActiveMQ RCE exp 基于python
github · Created 2023-11-04 11:58:21 UTC · 32 stars
github · Created 2023-11-03 22:06:09 UTC · 114 stars
Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Exploit Used in Malware
-
Added to KEVIntel
-
Detected by Nuclei
-
Detected by Metasploit