Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ACTIVEMQ_5_15_5.NASL
HistoryAug 30, 2018 - 12:00 a.m.

Apache ActiveMQ 5.x < 5.15.5 Multiple Vulnerabilities

2018-08-3000:00:00
This script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
178

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0.973

Percentile

99.9%

JSON

The version of Apache ActiveMQ running on the remote host is 5.x prior to 5.15.5. It is, therefore, affected by multiple vulnerabilities.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(112192);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/06");

  script_cve_id(
    "CVE-2012-0881",
    "CVE-2014-0114",
    "CVE-2015-5182",
    "CVE-2016-3092",
    "CVE-2016-5425",
    "CVE-2016-6325",
    "CVE-2016-8735",
    "CVE-2018-7489",
    "CVE-2018-8006"
  );
  script_bugtraq_id(
    67121,
    68753,
    91453,
    93472,
    93478,
    94463,
    103203,
    105156
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2023/06/02");

  script_name(english:"Apache ActiveMQ 5.x < 5.15.5 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"A web application running on the remote host is affected by multiple
 vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Apache ActiveMQ running on the remote host is 5.x prior
to 5.15.5. It is, therefore, affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"see_also", value:"http://activemq.apache.org/activemq-5155-release.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Apache ActiveMQ version 5.15.5 or later.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-7489");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apache Struts ClassLoader Manipulation Remote Code Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/08/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/08/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/08/30");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:apache:activemq");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_set_attribute(attribute:"enable_cgi_scanning", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("activemq_web_console_detect.nasl", "apache_activemq_nix_installed.nbin", "activemq_listen_port_detect.nbin");
  script_require_keys("installed_sw/Apache ActiveMQ");

  exit(0);
}

include("vcf.inc");

var app = vcf::combined_get_app_info(app:'Apache ActiveMQ');

var constraints = [
  { "min_version" : "5.0.0", "max_version" : "5.15.4", "fixed_version" : "5.15.5" }
];

vcf::check_version_and_report(app_info:app, constraints:constraints, severity:SECURITY_HOLE, flags:{flags: {'xss':TRUE}, xsrf:TRUE});
VendorProductVersionCPE
apacheactivemqcpe:/a:apache:activemq

Related

ibm 59
osv 6
nuclei 1
nessus 25
redhat 5
threatpost 1
openvas 21
ubuntucve 6
checkpoint_advisories 3
github 2
cvelist 7
f5 7
redhatcve 3
cve 6
veracode 3
oraclelinux 1
prion 6
packetstorm 2
centos 1
nvd 7
myhack58 3
exploitpack 1
zdt 2
metasploit 1
debiancve 4
fedora 3
atlassian 2
debian 5
tomcat 2
freebsd 1
amazon 1
ubuntu 1
securityvulns 1
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by a Using Components with Known Vulnerabilities (Apache Struts) vulnerability
2018-12-13 20:25:02
Security Bulletin: FasterXML Vulnerability in Jackson-Databind Affects IBM Sterling Connect:Direct File Agent (CVE-2018-7489)
2021-07-23 17:59:06
Security Bulletin: TADDM is vulnerable to a denial of service due to vulnerability in Apache Xerces2 J Library
2023-07-06 13:42:51
osv
osv
Apache ActiveMQ web console vulnerable to Cross-site Scripting
2018-10-30 20:48:58
CVE-2018-8006
2018-10-10 14:29:00
CGA-mr4r-7q43-gph7
2024-06-06 12:28:34
nuclei
nuclei
Apache ActiveMQ <=5.15.5 - Cross-Site Scripting
2021-01-09 14:45:11
nessus
nessus
EulerOS 2.0 SP1 : tomcat (EulerOS-SA-2016-1049)
2017-05-01 00:00:00
Oracle Linux 7 : tomcat (ELSA-2016-2046) (httpoxy)
2016-10-11 00:00:00
Scientific Linux Security Update : tomcat on SL7.x (noarch) (20161010) (httpoxy)
2016-10-12 00:00:00
redhat
redhat
(RHSA-2016:2046) Important: tomcat security update
2016-10-10 18:29:51
(RHSA-2016:2071) Moderate: Red Hat JBoss Enterprise Application Platform 6.4.11 update
2016-10-17 18:09:50
(RHSA-2016:2070) Moderate: Red Hat JBoss Enterprise Application Platform 6.4.11 update on RHEL 5
2016-10-17 18:09:40
threatpost
threatpost
Cross-Site Scripting Flaw in Apache ActiveMQ Threatens Web Visitors
2018-08-24 15:25:01
openvas
openvas
Apache Active MQ 5.0.0 to 5.15.5 Authenticated XSS Vulnerability - Windows
2018-10-25 00:00:00
Apache Active MQ 5.0.0 to 5.15.5 Authenticated XSS Vulnerability - Linux
2018-10-25 00:00:00
Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2016-1049)
2020-01-23 00:00:00
ubuntucve
ubuntucve
CVE-2018-8006
2018-10-10 00:00:00
CVE-2016-5425
2016-10-13 00:00:00
CVE-2016-6325
2016-10-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache ActiveMQ QueueFilter Cross-Site Scripting (CVE-2018-8006)
2018-08-23 00:00:00
Apache Tomcat Remote Code Execution (CVE-2016-8735)
2020-03-27 00:00:00
Apache Commons FileUpload Denial Of Service (CVE-2016-3092)
2016-07-31 00:00:00
github
github
Apache ActiveMQ web console vulnerable to Cross-site Scripting
2018-10-30 20:48:58
Denial of service in Apache Xerces2
2020-06-15 18:51:38
cvelist
cvelist
CVE-2018-8006
2018-10-10 00:00:00
CVE-2016-6325
2016-10-13 14:00:00
CVE-2016-5425
2016-10-13 14:00:00
f5
f5
K73644551 : Apache Tomcat vulnerability CVE-2016-6325
2016-10-20 00:00:00
K61414056 : Apache Tomcat vulnerability CVE-2016-5425
2016-10-20 00:00:00
SOL61414056 - Apache Tomcat vulnerability CVE-2016-5425
2016-10-20 00:00:00
redhatcve
redhatcve
CVE-2018-8006
2018-08-28 02:49:10
CVE-2016-6325
2016-10-10 08:47:27
CVE-2016-5425
2016-10-10 08:17:29
cve
cve
CVE-2018-8006
2018-10-10 14:29:00
CVE-2016-5425
2016-10-13 14:59:07
CVE-2015-5182
2017-09-25 21:29:00
veracode
veracode
Cross-Site Scripting (XSS)
2018-10-11 07:28:11
Privilege Escalation
2019-05-20 00:08:58
Denial Of Service (DoS)
2017-10-31 05:53:02
oraclelinux
oraclelinux
tomcat security update
2016-10-10 00:00:00
prion
prion
Design/Logic Flaw
2016-10-13 14:59:00
Cross site scripting
2018-10-10 14:29:00
Cross site request forgery (csrf)
2017-09-25 21:29:00
packetstorm
packetstorm
Apache Tomcat Privilege Escalation
2023-03-14 00:00:00
Apache Tomcat 8 / 7 / 6 Privilege Escalation
2016-10-10 00:00:00
centos
centos
tomcat security update
2016-10-11 18:36:52
nvd
nvd
CVE-2016-5425
2016-10-13 14:59:07
CVE-2018-8006
2018-10-10 14:29:00
CVE-2016-6325
2016-10-13 14:59:09
myhack58
myhack58
Apache Tomcat 8/7/6 (based on the RedHat distro)local mention the right vulnerability-vulnerability warning-the black bar safety net
2016-10-11 00:00:00
Vulnerability and early warning: based on the RedHat distribution of Apache Tomcat local to mention the right vulnerability-vulnerability warning-the black bar safety net
2016-10-12 00:00:00
Apache Commons Fileupload 1.3.1 DOS(CVE-2016-3092)-vulnerability warning-the black bar safety net
2017-06-15 00:00:00
exploitpack
exploitpack
Apache Tomcat 876 (RedHat Based Distros) - Local Privilege Escalation
2016-10-10 00:00:00
zdt
zdt
Apache Tomcat 8/7/6 (RedHat-Based Distros) - Privilege Escalation
2016-10-10 00:00:00
Apache Tomcat Privilege Escalation Exploit
2023-03-14 00:00:00
metasploit
metasploit
Apache Tomcat on RedHat Based Systems Insecure Temp Config Privilege Escalation
2023-01-19 20:28:10
debiancve
debiancve
CVE-2016-5425
2016-10-13 14:59:00
CVE-2018-8006
2018-10-10 14:29:00
CVE-2012-0881
2017-10-30 16:29:00
fedora
fedora
[SECURITY] Fedora 28 Update: jackson-databind-2.9.4-3.fc28
2018-04-01 00:46:43
[SECURITY] Fedora 25 Update: tomcat-8.0.36-2.fc25
2016-09-01 13:43:39
[SECURITY] Fedora 24 Update: tomcat-8.0.36-2.fc24
2016-09-01 17:01:05
atlassian
atlassian
Upgrade Tomcat to 8.0.36 or later
2016-07-14 14:22:05
Upgrade commons-fileupload to version >= 1.3.2
2016-07-20 08:22:15
debian
debian
[SECURITY] [DSA 3614-1] tomcat7 security update
2016-07-02 12:54:16
[SECURITY] [DSA 3614-1] tomcat7 security update
2016-07-02 12:54:16
[SECURITY] [DSA 3611-1] libcommons-fileupload-java security update
2016-06-30 08:44:01
tomcat
tomcat
Fixed in Apache Tomcat 8.5.3 and 8.0.36
2016-06-13 00:00:00
Fixed in Apache Tomcat 9.0.0.M8
2016-06-13 00:00:00
freebsd
freebsd
Apache Commons FileUpload -- denial of service
2016-06-21 00:00:00
amazon
amazon
Medium: tomcat7, tomcat8
2016-08-17 13:30:00
ubuntu
ubuntu
Tomcat vulnerability
2016-07-06 00:00:00
securityvulns
securityvulns
Apache commons-beanutils code exeuction
2014-06-17 00:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0.973

Percentile

99.9%

JSON
Related for ACTIVEMQ_5_15_5.NASL
ibm59osv6nuclei1nessus25redhat5threatpost1openvas21ubuntucve6checkpoint_advisories3github2cvelist7f57redhatcve3cve6veracode3oraclelinux1prion6packetstorm2centos1nvd7myhack583exploitpack1zdt2metasploit1debiancve4fedora3atlassian2debian5tomcat2freebsd1amazon1ubuntu1securityvulns1