Lucene search
K

12 matches found

Debian
Debian
added 2021/03/05 5:5 p.m.50 views

[SECURITY] [DLA 2583-1] activemq security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2583-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA March 05, 2021 https://wiki.debian.org/LTS -...

7.5CVSS7.1AI score0.23255EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/11/05 7:50 p.m.31 views

Security Bulletin: CVE-2018-11775 TLS hostname verification when using the Apache ActiveMQ Client

Summary TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default. Vulnerability Details CVEID:...

7.4CVSS1.8AI score0.0699EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/28 1:15 a.m.38 views

Security Bulletin: Apache ActiveMQ Client used in IBM Jazz for Service Management could allow a remote attacker to conduct a man-in-the-middle attack (CVE-2018-11775)

Summary Apache ActiveMQ Client used in IBM Jazz for Service Management could allow a remote attacker to conduct a man-in-the-middle attack CVE-2018-11775 Vulnerability Details CVEID: CVE-2018-11775 DESCRIPTION: Apache ActiveMQ Client could allow a remote attacker to conduct a man-in-the-middle...

7.4CVSS3.2AI score0.0699EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 8:47 a.m.37 views

Security Bulletin: IBM Tivoli Netcool Impact is affected by an Apache ActiveMQ vulnerability (CVE-2018-11775)

Summary IBM Tivoli Netcool Impact has addressed the following Apache ActiveMQ vulnerability. Vulnerability Details CVEID: CVE-2018-11775 DESCRIPTION: TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack...

7.4CVSS1.2AI score0.0699EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2019/11/14 9:17 p.m.146 views

Important: Red Hat Security Advisory: Red Hat Fuse 7.5.0 security update

A minor version update from 7.4 to 7.5 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

10CVSS7.9AI score0.94774EPSS
Exploits20References30
RedhatCVE
RedhatCVE
added 2018/09/14 8:18 p.m.35 views

CVE-2018-11775

TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default...

7.4CVSS2.6AI score0.0699EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/09/14 12:0 a.m.109 views

Apache ActiveMQ Client 5.x < 5.15.6 TLS Hostname Verification Weakness

The version of Apache ActiveMQ running on the remote host is 5.x prior to 5.15.6. It is, therefore, affected by a flaw related to TLS hostname verification and ActiveMQ Client that allows man-in-the-middle attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

7.4CVSS7.5AI score0.0699EPSS
Exploits0References3
OSV
OSV
added 2018/09/10 8:29 p.m.28 views

CVE-2018-11775

TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default...

7.4CVSS6.5AI score0.0699EPSS
Exploits0References15
UbuntuCve
UbuntuCve
added 2018/09/10 8:29 p.m.40 views

CVE-2018-11775

TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default...

7.4CVSS7.1AI score0.0699EPSS
Exploits0References5
Cvelist
Cvelist
added 2018/09/10 8:0 p.m.30 views

CVE-2018-11775

TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default...

7.3AI score0.0699EPSS
Exploits0References15
CVE
CVE
added 2018/09/10 8:0 p.m.206 views

CVE-2018-11775

CVE-2018-11775 affects the Apache ActiveMQ Client, where TLS hostname verification was missing prior to version 5.15.6, enabling potential MITM between a Java application and the ActiveMQ server. The issue is stated as now being enabled by default and is addressed by upgrading the ActiveMQ client...

7.4CVSS7.1AI score0.0699EPSS
Exploits0References15Affected Software1
Debian CVE
Debian CVE
added 2018/09/10 8:0 p.m.24 views

CVE-2018-11775

TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default...

7.4CVSS7.5AI score0.0699EPSS
Exploits0
Rows per page
Query Builder