3 matches found
Security Bulletin: IBM Resilient SOAR is Using Components with Known Vulnerabilities - activemq-camel-5.15.9.jar (CVE-2015-5182, CVE-2015-5183, CVE-2015-5184, CVE-2020-1941)
Summary activemq-camel-5.15.9.jar vulnerable to multiple CVEs. Details below. Vulnerability Details CVEID: CVE-2015-5182 DESCRIPTION: Red Hat JBoss A-MQ is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input by the jolokia API. By persuading an...
CVE-2015-5184
Console: CORS headers set to allow all in Red Hat AMQ...
CVE-2015-5184
CVE-2015-5184 affects Red Hat JBoss A-MQ/Hawtio console. The vulnerability arises from the Hawtio console’s HTTP response headers: the Access-Control-Allow-Origin header is not restricted, allowing remote attackers to access sensitive information exposed by the console. Functional impact is infor...