Fix available for Apache ActiveMQ vulnerability CVE-2023-46604
BMC Software is alerting users to a security vulnerability that requires immediate attention in the following product versions:
Product | TrueSight Orchestration Platform, version 22.2, 20.02.02, 20.02.01, 20.02, and 8.2 |
|---|---|
Date | December 11, 2023 |
If you have any questions about this vulnerability, contact Customer Support.
Issue
A zero-day exploit for the CVE-2023-46604 vulnerability was publicly released by Apache.
A detailed description of the vulnerability can be found here: ActiveMQ (apache.org).
Resolution
Remediation measures are available. You must be logged in to access the fix or workaround described in theKnowledge Article number 000417319 (Support logon ID required).
Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*