CVE-2023-5763
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Nov 3, 2023
Updated: Nov 13, 2023
CWE ID 913
CWE ID 20
Summary
CVE-2023-5763 is a vulnerability affecting Eclipse GlassFish 5 and 6 servers that use outdated versions of Java Development Kit (JDK), specifically those below 6u211, 7u201, or 8u191. The issue enables remote attackers to inject malicious code onto the server by exploiting insecure ORB (Object Request Broker) listeners. This can potentially lead to unauthorized access, data theft, or system compromise. Users are strongly advised to update their JDK and GlassFish installations to the latest versions to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share