This is an automated email from the ASF dual-hosted git repository.
jbonofre pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/activemq-website.git
The following commit(s) were added to refs/heads/main by this push:
new b62fb6063 Add CVE-2023-46604 to the list
b62fb6063 is described below
commit b62fb60634f153d1bfc0d3cc04be39001cad01da
Author: JB Onofré <[email protected]>
AuthorDate: Fri Oct 27 16:55:11 2023 +0200
Add CVE-2023-46604 to the list
---
src/components/classic/security.md | 1 +
1 file changed, 1 insertion(+)
diff --git a/src/components/classic/security.md
b/src/components/classic/security.md
index e7075d194..1e609bda3 100644
--- a/src/components/classic/security.md
+++ b/src/components/classic/security.md
@@ -9,6 +9,7 @@ Details of security problems fixed in released versions of
Apache ActiveMQ 5.x a
See the main [Security Advisories](../../security-advisories) page for details
for other components and general information such as reporting new security
issues.
+*
[CVE-2023-46604](../../security-advisories.data/CVE-2023-46604-announcement.txt)
- Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code
execution (RCE) attack
*
[CVE-2021-26117](../../security-advisories.data/CVE-2021-26117-announcement.txt)
- ActiveMQ: LDAP-Authentication does not verify passwords on servers with
anonymous bind
*
[CVE-2020-13947](../../security-advisories.data/CVE-2020-13947-announcement.txt)
- XSS in WebConsole
*
[CVE-2020-13920](../../security-advisories.data/CVE-2020-13920-announcement.txt)
- JMX MITM vulnerability
