Skip to main content

Amq

6 CVEs product

Monthly

CVE-2022-1278 Maven HIGH PATCH This Week

A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Wildfly Amq Amq Online Integration Camel K +4
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2020-14307 MEDIUM This Month

A vulnerability was found in Wildfly's Enterprise Java Beans (EJB) versions shipped with Red Hat JBoss EAP 7, where SessionOpenInvocations are never removed from the remote InvocationTracker after a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Java Denial Of Service Red Hat Amq Jboss Enterprise Application Platform Continuous Delivery +3
NVD
CVSS 3.1
6.5
EPSS
1.2%
CVE-2020-14297 Maven MEDIUM PATCH This Month

A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Red Hat Amq Jboss Ejb Client Jboss Enterprise Application Platform Continuous Delivery +3
NVD
CVSS 3.1
6.5
EPSS
1.2%
CVE-2015-5184 HIGH This Week

Console: CORS headers set to allow all in Red Hat AMQ. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Red Hat Information Disclosure Amq Jboss Enterprise Web Server
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2015-5183 HIGH This Week

Console: HTTPOnly and Secure attributes not set on cookies in Red Hat AMQ. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Red Hat Information Disclosure Amq Jboss A Mq Jboss Enterprise Web Server
NVD
CVSS 3.1
7.5
EPSS
0.4%
CVE-2015-5182 HIGH This Week

Cross-site request forgery (CSRF) vulnerability in the jolokia API in A-MQ. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Amq
NVD
CVSS 3.1
8.8
EPSS
0.2%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

A flaw was found in WildFly, where an attacker can see deployment names, endpoints, and any other data the trace payload may contain. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Wildfly Amq +6
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

A vulnerability was found in Wildfly's Enterprise Java Beans (EJB) versions shipped with Red Hat JBoss EAP 7, where SessionOpenInvocations are never removed from the remote InvocationTracker after a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Java Denial Of Service Red Hat +5
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Red Hat Amq +5
NVD
EPSS 0% CVSS 7.5
HIGH This Week

Console: CORS headers set to allow all in Red Hat AMQ. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Red Hat Information Disclosure Amq +1
NVD
EPSS 0% CVSS 7.5
HIGH This Week

Console: HTTPOnly and Secure attributes not set on cookies in Red Hat AMQ. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Red Hat Information Disclosure Amq +2
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Cross-site request forgery (CSRF) vulnerability in the jolokia API in A-MQ. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Amq
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy