Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
July 25, 2023Rewterz Threat Advisory – CVE-2023-38435 – Apache Felix Healthcheck Webconsole Plugin Vulnerability
July 26, 2023Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
July 25, 2023Rewterz Threat Advisory – CVE-2023-38435 – Apache Felix Healthcheck Webconsole Plugin Vulnerability
July 26, 2023Severity
High
Analysis Summary
CVE-2023-38647
Apache Helix could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization in the javax.script.ScriptEngineManager component. By sending specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-38647
Affected Vendors
Apache
Affected Products
- Apache Helix 1.2.0
Remediation
Upgrade to the latest version of Apache Helix, available from the Apache Website.
Apache Website