Lucene search
HistoryAug 16, 2022 - 9:15 p.m.
CVE-2020-14379
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H
0.0004 Low
EPSS
Percentile
12.7%
A flaw was found in Red Hat AMQ Broker in a way that a XEE attack can be done via Broker’s configuration files, leading to denial of service and information disclosure.
Affected configurations
Node
redhatjboss_a-mqMatch7
Related
cvelist
cvelist
CVE-2020-14379
2022-08-16 19:40:15
cve
cve
CVE-2020-14379
2022-08-16 21:15:09
redhatcve
redhatcve
CVE-2020-14379
2021-11-04 10:13:50
prion
prion
Information disclosure
2022-08-16 21:15:00
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H
0.0004 Low
EPSS
Percentile
12.7%
Related for NVD:CVE-2020-14379