CVE-2020-1941

🗓️ 14 May 2020 16:29:26Reported by apacheType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 169 Views

Apache ActiveMQ 5.0.0 to 5.15.11, webconsole admin GUI XS

Reporter	Title	Published	Views	Family All 29
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities	7 Oct 202020:49	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability identified in Apache ActiveMQ used in Cloud Pak System (CVE-2020-1941)	28 Oct 202018:18	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in Apache ActiveMQ affects IBM Operations Analytics Predictive Insights (CVE-2020-1941)	15 Sep 202011:48	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Directory Integrator is affected by multiple security vulnerabilities	22 Jun 202316:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Resilient SOAR is Using Components with Known Vulnerabilities - activemq-camel-5.15.9.jar (CVE-2015-5182, CVE-2015-5183, CVE-2015-5184, CVE-2020-1941)	31 Aug 202022:52	–	ibm
Tenable Nessus	Apache ActiveMQ 5.x < 5.15.12 XSS (CVE-2020-1941)	17 Jul 202000:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2020-1941	18 Aug 202500:00	–	nessus
CNVD	Apache ActiveMQ Cross-Site Scripting Vulnerability (CNVD-2020-41504)	15 May 202000:00	–	cnvd
Cvelist	CVE-2020-1941	14 May 202016:29	–	cvelist
Debian CVE	CVE-2020-1941	14 May 202016:29	–	debiancve

NVD

Vulners

Node

apache activemqRange5.0.0–5.15.11

Node

oracle communications_diameter_signaling_routerRange8.0.0–8.2.2

oracle communications_element_managerMatch8.1.1

oracle communications_element_managerMatch8.2.0

oracle communications_element_managerMatch8.2.1

oracle communications_session_report_managerMatch8.1.1

oracle communications_session_report_managerMatch8.2.0

oracle communications_session_report_managerMatch8.2.1

oracle communications_session_route_managerMatch8.1.1

oracle communications_session_route_managerMatch8.2.0

oracle communications_session_route_managerMatch8.2.1

oracle enterprise_repositoryMatch11.1.1.7.0

oracle flexcube_private_bankingMatch12.0.0

oracle flexcube_private_bankingMatch12.1.0

[
  {
    "product": "Apache ActiveMQ",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Apache ActiveMQ 5.0.0 to 5.15.11"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread.html/rb2fd3bf2dce042e0ab3f3c94c4767c96bb2e7e6737624d63162df36d%40%3Ccommits.activemq.apache.org%3E
lists	www.lists.apache.org/thread.html/re4672802b0e5ed67c08c9e77057d52138e062f77cc09581b723cf95a%40%3Ccommits.activemq.apache.org%3E
oracle	www.oracle.com//security-alerts/cpujul2021.html
oracle	www.oracle.com/security-alerts/cpuApr2021.html
activemq	www.activemq.apache.org/security-advisories.data/CVE-2020-1941-announcement.txt
oracle	www.oracle.com/security-alerts/cpuoct2020.html
oracle	www.oracle.com/security-alerts/cpujul2020.html
lists	www.lists.apache.org/thread.html/r946488fb942fd35c6a6e0359f52504a558ed438574a8f14d36d7dcd7%40%3Ccommits.activemq.apache.org%3E

21 Nov 2024 05:11Current

6Medium risk

Vulners AI Score6

CVSS 24.3

CVSS 3.16.1

EPSS0.05466

CWE-79