CVE-2016-4978

7.2 HIGH

Published: September 27, 2016 Modified: June 15, 2026

Description

The getObject method of the javax.jms.ObjectMessage class in the (1) JMS Core client, (2) Artemis broker, and (3) Artemis REST component in Apache ActiveMQ Artemis before 1.4.0 might allow remote authenticated users with permission to send messages to the Artemis broker to deserialize arbitrary objects and execute arbitrary code by leveraging gadget classes being present on the Artemis classpath.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://mail-archives.apache.org/mod_mbox/activemq-users/201609.mbox/%3CCAH6wpnqzeNtpykT7emtDU1-GV7AvjFP5-YroWcCC4UZyQEFvtA%40mail.gmail.com%3E

Source: secalert@redhat.com

Mailing List Vendor Advisory

http://www.securityfocus.com/bid/93142

Source: secalert@redhat.com

Third Party Advisory VDB Entry

https://access.redhat.com/errata/RHSA-2017:1834

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:1835

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:1836

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:1837

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3454

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3455

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3456

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3458

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1447

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1448

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1449

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1450

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1451

Source: secalert@redhat.com

Third Party Advisory

https://lists.apache.org/thread.html/7260bd0955c12aac5bd892039d3356ba3aa0ff4caaf2aa4fd4fe84a2%40%3Cissues.activemq.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/d4ffbc6a43a915324a394b2913ceb7d07bc352f2d08caa19df0aff02%40%3Cissues.activemq.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/rb2fd3bf2dce042e0ab3f3c94c4767c96bb2e7e6737624d63162df36d%40%3Ccommits.activemq.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/rc96ad63f148f784c84ea7f0a178c84a8985c6afccabbcd9847a82088%40%3Ccommits.activemq.apache.org%3E

Source: secalert@redhat.com

https://www.blackhat.com/docs/us-16/materials/us-16-Kaiser-Pwning-Your-Java-Messaging-With-Deserialization-Vulnerabilities.pdf

Source: secalert@redhat.com

Technical Description Third Party Advisory

http://mail-archives.apache.org/mod_mbox/activemq-users/201609.mbox/%3CCAH6wpnqzeNtpykT7emtDU1-GV7AvjFP5-YroWcCC4UZyQEFvtA%40mail.gmail.com%3E