6 matches found
Important: Red Hat Security Advisory: Red Hat AMQ Broker 7.10.1 release and security update
Red Hat AMQ Broker 7.10.1 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
com.atomikos:transactions-spring-boot-integration-tests (>=5.0.9 <=6.0.1), com.hack23.cia:jms.broker (>=2019.9.14 <=2022.7.23) +151 more potentially affected by CVE-2022-35278 via org.apache.activemq:artemis-server (>=1.0.0 <=2.23.1)
org.apache.activemq:artemis-server MAVEN version =1.0.0, =5.0.9, =2019.9.14, =2019.9.14, =2019.9.14, =0.0.2, =1.14.2, =3.5.0, =1.1.4, =1.1.4, =4.2.8, =0.0.7, =0.0.11 and more Source cves: CVE-2022-35278 Source advisory: OSV:GHSA-CV6R-H2FM-PVRP...
CVE-2022-35278
In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue...
CVE-2022-35278
In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue...
CVE-2022-35278 HTML Injection in ActiveMQ Artemis Web Console
In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue...
CVE-2022-35278
CVE-2022-35278 affects Apache ActiveMQ Artemis before 2.24.0, where HTML in the name of an address/queue can inject HTML into the web console, potentially showing malicious content or redirecting users. Red Hat AMQ Broker advisories confirm a fix in 2.24.0+ (and related advisories list the CVE). ...