Lucene search

K
osvGoogleOSV:GHSA-3WFJ-VH84-732P
HistoryMay 14, 2022 - 1:14 a.m.

Improper Neutralization of Special Elements used in an OS Command in Apache ActiveMQ

2022-05-1401:14:52
Google
osv.dev
25
apache
activemq
os command

EPSS

0.519

Percentile

97.6%

The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.