A Critical Zero Day Vulnerability (CVE-2023-46604) a remote code execution vulnerability has been found in the Apache ActiveMQ library .
DX UIM uses Apache ActiveMQ library in the probes listed below:
DX UIM Server with the following supported probes
The above impacted probes will be upgraded with either of Apache ActiveMQ versions 5.15.16, 5.16.7, 5.17.6, or 5.18.3 as per the upgrade guidance.
This KB will be updated on a continuous basis as the situation evolves.There is NO Impact on Probes installed along with the DX UIM Server and Operator console of UIM 20.3.x and 20.4.x versions.