Apache ActiveMQ Jolokia 远程代码执行漏洞(CVE-2022-41678)分析

Apache ActiveMQ Jolokia 远程代码执行漏洞(CVE-2022-41678)分析


ActiveMQ中,经过身份验证的用户默认情况下可以通过/api/jolokia/接口操作MBean,其中FlightRecorder可以被用于写Jsp WebShell,从而造成远程代码执行漏洞 FlightRecorder存在于Jdk 11+,具体类名:jdk.management.jfr.FlightRecorderMXBeanImpl

Source

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply

Your email address will not be published. Required fields are marked *