Press ESC to close

Apache MINA CVE-2024-52046: CVSS 10.0 Flaw Enables RCE via Unsafe Serialization

Category Details
Threat Actors Not specifically identified.
Campaign Overview Vulnerability CVE-2024-52046 in Apache MINA allows remote code execution (RCE) under specific conditions. Other recent patches for vulnerabilities in Tomcat, Traffic Control, and HugeGraph-Server.
Target Regions Not region-specific; impacts global users of Apache MINA and other ASF products.
Methodology Exploits Java’s native deserialization process via ObjectSerializationDecoder to send malicious serialized data.
Products Targeted Apache MINA (versions 2.0.X, 2.1.X, 2.2.X), Apache Tomcat, Traffic Control, HugeGraph-Server, and Struts.
Malware Reference Not applicable (exploitation via vulnerability).
Tools Used Malicious serialized data crafted to exploit deserialization vulnerability.
Vulnerabilities Exploited CVE-2024-52046 (Apache MINA, CVSS 10.0); additional recent vulnerabilities: CVE-2024-56337 (Tomcat), CVE-2024-45387 (Traffic Control), CVE-2024-43441 (HugeGraph-Server), CVE-2024-53677 (Struts).
TTPs Sending malicious serialized data to trigger deserialization flaws, leading to remote code execution.
Attribution No specific attribution; vulnerabilities in Apache Software Foundation products exploited.
Recommendations Apply the latest patches for Apache MINA and explicitly allow classes in ObjectSerializationDecoder. Update all affected Apache products to their latest versions immediately.
Source The Hackers News

Read full article: https://thehackernews.com/2024/12/apache-mina-cve-2024-52046-cvss-100.html

The above summary has been generated by an AI language model

Stay Updated with Our Newsletter

Source: TheHackersNews

Published on: December 27, 2024

Leave a Reply

Your email address will not be published. Required fields are marked *