Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6470

Malware in sbrugna...

5.9CVSS6AI score0.00321EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-6492

Malware in sbrugna...

4.3CVSS4.9AI score0.00808EPSS
Exploits0References3
NVD
NVD
added 2020/09/16 6:15 p.m.22 views

CVE-2020-14348

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating...

4.3CVSS0.00808EPSS
Exploits0References1
OSV
OSV
added 2020/09/16 6:15 p.m.2 views

CVE-2020-14348

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating...

4.3CVSS5.8AI score0.00808EPSS
Exploits0References1
Prion
Prion
added 2020/09/16 6:15 p.m.13 views

Design/Logic Flaw

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating...

4CVSS4.8AI score0.00808EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/09/16 5:43 p.m.69 views

CVE-2020-14348

AMQ Online prior to 1.5.2 is affected by CVE-2020-14348, where injecting an invalid top-level field into a user’s AddressSpace configuration in the user namespace can lead to an inconsistent state, causing provisioning and address-creation failures and degraded operation of AMQ Online components....

4.3CVSS4.6AI score0.00808EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/16 5:43 p.m.24 views

CVE-2020-14348

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating...

4.6AI score0.00808EPSS
Exploits0References1
OSV
OSV
added 2020/08/03 5:15 p.m.14 views

CVE-2020-14319

It was found that the AMQ Online console is vulnerable to a Cross-Site Request Forgery CSRF which is exploitable in cases where preflight checks are not instigated or bypassed. For example authorised users using an older browser with Adobe Flash are vulnerable when targeted by an attacker. This...

5.9CVSS6.9AI score
Exploits0References1
NVD
NVD
added 2020/08/03 5:15 p.m.27 views

CVE-2020-14319

It was found that the AMQ Online console is vulnerable to a Cross-Site Request Forgery CSRF which is exploitable in cases where preflight checks are not instigated or bypassed. For example authorised users using an older browser with Adobe Flash are vulnerable when targeted by an attacker. This...

5.9CVSS5.8AI score0.00321EPSS
Exploits0References1
Prion
Prion
added 2020/08/03 5:15 p.m.13 views

Cross site request forgery (csrf)

It was found that the AMQ Online console is vulnerable to a Cross-Site Request Forgery CSRF which is exploitable in cases where preflight checks are not instigated or bypassed. For example authorised users using an older browser with Adobe Flash are vulnerable when targeted by an attacker. This...

4CVSS5.8AI score0.00321EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2020/08/03 4:50 p.m.61 views

CVE-2020-14319

The CVE-2020-14319 entry concerns a Cross-Site Request Forgery (CSRF) vulnerability in the AMQ Online console. Affected are AMQ Online versions prior to 1.5.2 and Enmasse versions 0.31.0-rc1 up to, but not including, 0.32.2. The flaw stems from insufficient preflight checks, enabling CSRF when au...

5.9CVSS5.7AI score0.00321EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2020/08/03 4:50 p.m.31 views

CVE-2020-14319

It was found that the AMQ Online console is vulnerable to a Cross-Site Request Forgery CSRF which is exploitable in cases where preflight checks are not instigated or bypassed. For example authorised users using an older browser with Adobe Flash are vulnerable when targeted by an attacker. This...

5.8AI score0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/07/31 11:14 a.m.24 views

CVE-2020-14348

A flaw was found in AMQ Online before 1.5.2, where injecting an invalid field to a user's address space configuration of the user namespace puts AMQ Online in an inconsistent state. In this inconsistent state, the AMQ Online components do not operate properly. For example, the failure of...

4CVSS1.4AI score0.00808EPSS
Exploits0References3
CNVD
CNVD
added 2020/07/31 12:0 a.m.4 views

Red Hat AMQ Online Cross-Site Request Forgery Vulnerability

Red Hat AMQ Online is a Red Hat solution that provides the overall functionality of a self-service i.e., service-as-a-service messaging platform running on OpenShift. A cross-site request forgery vulnerability exists in Red Hat AMQ Online version 1.5.1. The vulnerability stems from a WEB...

5.9CVSS6.9AI score0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/07/29 3:44 p.m.21 views

CVE-2020-14319

A flaw was found in the AMQ Online console, where it is vulnerable to a Cross-Site Request Forgery attack CSRF, which is exploitable in cases where preflight checks are not instigated or bypassed. This flaw allows an attacker to target authorized users using an older browser with Adobe Flash. The...

4CVSS2.7AI score0.00321EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/07/29 3:21 p.m.3 views

amq-on: CSRF (in graphQL requests)

A flaw was found in the AMQ Online console, where it is vulnerable to a Cross-Site Request Forgery attack CSRF, which is exploitable in cases where preflight checks are not instigated or bypassed. This flaw allows an attacker to target authorized users using an older browser with Adobe Flash. The...

5.9CVSS5.7AI score0.00321EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/07/29 3:21 p.m.55 views

Moderate: Red Hat Security Advisory: AMQ Online 1.5.2 release and security update

An update of the Red Hat OpenShift Container Platform 3.11 and 4.4/4.5 container images is now available for Red Hat AMQ Online. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.7CVSS6.6AI score0.04094EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/04/22 12:8 p.m.72 views

Low: Red Hat Security Advisory: AMQ Online security update

An update of the Red Hat OpenShift Container Platform 3.11 and 4.1 container images is now available for Red Hat AMQ Online. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7AI score0.09438EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/02/13 2:50 p.m.75 views

Important: Red Hat Security Advisory: AMQ Online security update

An update of the Red Hat OpenShift Container Platform 3.11 and 4.1 container images is now available for Red Hat AMQ Online. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.1CVSS6.8AI score0.13474EPSS
Exploits3References5
Rows per page
Query Builder