

Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities
September 6, 2023
Rewterz Threat Alert – “Stealc” – An Information Stealer Malware – Active IOCs
September 6, 2023
Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities
September 6, 2023
Rewterz Threat Alert – “Stealc” – An Information Stealer Malware – Active IOCs
September 6, 2023Severity
High
Analysis Summary
CVE-2023-40743
Apache Axis could allow a remote attacker to execute arbitrary code on the system, caused by improper input validation by the ServiceFactory.getService function. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code, cause a denial of service or perform SSRF attacks.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-40743
Affected Vendors
Apache
Affected Products
- Apache Axis 1.3
Remediation
Refer to axis-axis1-java GIT Repository for patch, upgrade or suggested workaround information.