CVE-2023-39410

Owned by Sheetal Shet, created
Apr 05, 2024
1 min read

Description

We've identified a vulnerability impacting Java applications utilizing the Apache Avro Java SDK. Following thorough investigations, HiveMQ has determined that version 4.23 is affected due to its utilization of an Apache Avro version prior to 1.13.

Severity

LOW

Affected Version

HiveMQ 4.23, 4.24.0, 4.24.1

In case you are running one of these HiveMQ versions in production we strongly recommend upgrading to one of our latest HiveMQ version.

Fix Version

HiveMQ 4.25 and onwards