Apache.ActiveMQ.JMX.RMIConnectorServer.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in Apache Software Foundation ActiveMQ.
The vulnerability is due to a regression introduced in a patch addressing a prior vulnerability. A remote, unauthenticated attacker can exploit the vulnerability by sending crafted requests to a vulnerable application. Successful exploitation can result in remote code execution in the context of the service.
Affected Products
Apache Software Foundation ActiveMQ prior to 5.15.13
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://activemq.apache.org/security-advisories.data/CVE-2020-11998-announcement.txt
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |