Lucene search

CVE-2020-1941

🗓️ 14 May 2020 17:12:15Reported by apacheType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 122 Views

Apache ActiveMQ 5.0.0 to 5.15.11, webconsole admin GUI XS

Reporter	Title	Published	Views	Family All 23
Tenable Nessus	Apache ActiveMQ 5.x < 5.15.12 XSS (CVE-2020-1941)	17 Jul 202000:00	–	nessus
IBM Security Bulletins	Security Bulletin: Vulnerability identified in Apache ActiveMQ used in Cloud Pak System (CVE-2020-1941)	28 Oct 202018:18	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in Apache ActiveMQ affects IBM Operations Analytics Predictive Insights (CVE-2020-1941)	15 Sep 202011:48	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Resilient SOAR is Using Components with Known Vulnerabilities - activemq-camel-5.15.9.jar (CVE-2015-5182, CVE-2015-5183, CVE-2015-5184, CVE-2020-1941)	31 Aug 202022:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities	7 Oct 202020:49	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Directory Integrator is affected by multiple security vulnerabilities	22 Jun 202316:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Directory Suite is vulnerable to multiple issues	6 Jun 202318:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Data Virtualization on Cloud Pak for Data (Jan 2025)	26 Mar 202502:33	–	ibm
OSV	BIT-activemq-2020-1941	6 Mar 202410:51	–	osv
OSV	Apache ActiveMQ webconsole admin GUI is open to XSS	21 May 202021:08	–	osv

Nvd

Vulners

Node

apache activemqRange5.0.0–5.15.11

Node

oracle communications_diameter_signaling_routerRange8.0.0–8.2.2

oracle communications_element_managerMatch8.1.1

oracle communications_element_managerMatch8.2.0

oracle communications_element_managerMatch8.2.1

oracle communications_session_report_managerMatch8.1.1

oracle communications_session_report_managerMatch8.2.0

oracle communications_session_report_managerMatch8.2.1

oracle communications_session_route_managerMatch8.1.1

oracle communications_session_route_managerMatch8.2.0

oracle communications_session_route_managerMatch8.2.1

oracle enterprise_repositoryMatch11.1.1.7.0

oracle flexcube_private_bankingMatch12.0.0

oracle flexcube_private_bankingMatch12.1.0

[
  {
    "product": "Apache ActiveMQ",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Apache ActiveMQ 5.0.0 to 5.15.11"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpuApr2021.html
lists	www.lists.apache.org/thread.html/re4672802b0e5ed67c08c9e77057d52138e062f77cc09581b723cf95a%40%3Ccommits.activemq.apache.org%3E
oracle	www.oracle.com//security-alerts/cpujul2021.html
lists	www.lists.apache.org/thread.html/r946488fb942fd35c6a6e0359f52504a558ed438574a8f14d36d7dcd7%40%3Ccommits.activemq.apache.org%3E
oracle	www.oracle.com/security-alerts/cpujul2020.html
lists	www.lists.apache.org/thread.html/rb2fd3bf2dce042e0ab3f3c94c4767c96bb2e7e6737624d63162df36d%40%3Ccommits.activemq.apache.org%3E
activemq	www.activemq.apache.org/security-advisories.data/CVE-2020-1941-announcement.txt
oracle	www.oracle.com/security-alerts/cpuoct2020.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2020 17:15Current

6Medium risk

Vulners AI Score6

CVSS24.3

CVSS36.1

EPSS0.10306

CWE-79