CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

RedHat Linux•added 2026/04/16 3:32 p.m.•0 views

Apache Artemis: Apache ActiveMQ Artemis: Apache Artemis and Apache ActiveMQ Artemis: Unauthorized address creation due to incorrect authorization during JMS topic subscription.

A flaw was found in Apache Artemis and Apache ActiveMQ Artemis. An authenticated user can exploit this incorrect authorization vulnerability by attempting to create a non-durable Java Message Service JMS topic subscription on an address that does not exist. If the user has "createDurableQueue"...

4.3CVSS5.7AI score0.00029EPSS

Exploits0References6

Veracode•added 2026/03/28 5:5 a.m.•3 views

Incorrect Authorization

Apache Artemis is vulnerable to Incorrect Authorization. The vulnerability is due to incorrect authorization, where an authenticated user with the 'createDurableQueue' permission but without the 'createAddress' permission can create a temporary address when attempting to create a non-durable JMS...

4.3CVSS5.2AI score0.00029EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/03/24 11:54 a.m.•3 views

CVE-2026-32642

4.3CVSS5.7AI score0.00029EPSS

Exploits0References5

EUVD•added 2026/03/24 9:30 a.m.•1 views

EUVD-2026-14782

Incorrect Authorization CWE-863 vulnerability in Apache Artemis, Apache ActiveMQ Artemis exists when an application using the OpenWire protocol attempts to create a non-durable JMS topic subscription on an address that doesn't exist with an authenticated user which has the "createDurableQueue"...

2.3CVSS5.8AI score0.00029EPSS

Exploits0References3

OSV•added 2026/03/24 9:30 a.m.•1 views

GHSA-F4GC-MWRG-Q36R Apache Artemis: Unauthorized Temporary Address Creation via OpenWire Protocol

2.3CVSS5.8AI score0.00029EPSS

Exploits0References4

Github Security Blog•added 2026/03/24 9:30 a.m.•3 views

Apache Artemis: Unauthorized Temporary Address Creation via OpenWire Protocol

4.3CVSS5.8AI score0.00029EPSS

Exploits0References4Affected Software2

NVD•added 2026/03/24 8:16 a.m.•0 views

CVE-2026-32642

4.3CVSS0.00029EPSS

Exploits0References2

OSV•added 2026/03/24 8:16 a.m.•0 views

UBUNTU-CVE-2026-32642

4.3CVSS5.8AI score0.00029EPSS

Exploits0References4

ATTACKERKB•added 2026/03/24 7:53 a.m.•2 views

CVE-2026-32642

2.3CVSS5.8AI score0.00029EPSS

Exploits0References2Affected Software2

Cvelist•added 2026/03/24 7:53 a.m.•23 views

CVE-2026-32642 Apache Artemis, Apache ActiveMQ Artemis: Temporary address auto-created for OpenWire consumer without createAddress permission

2.3CVSS0.00029EPSS

Exploits0References1

CVE•added 2026/03/24 7:53 a.m.•6 views

CVE-2026-32642

CVE-2026-32642 is an authorization bypass in Apache Artemis/ActiveMQ Artemis OpenWire handling: when an authenticated user with createDurableQueue but without createAddress attempts to create a non-durable JMS topic subscription on a non-existent address and address auto-creation is disabled, a t...

4.3CVSS5.8AI score0.00029EPSS

Exploits0References2Affected Software2

Vulnrichment•added 2026/03/24 7:53 a.m.•3 views

CVE-2026-32642 Apache Artemis, Apache ActiveMQ Artemis: Temporary address auto-created for OpenWire consumer without createAddress permission

2.3CVSS5.8AI score0.00029EPSS

Exploits0References1

Positive Technologies•added 2026/03/21 12:0 a.m.•2 views

PT-2026-26884

2.3CVSS5.8AI score0.00029EPSS

Exploits0References3

OSV•added 2014/04/24 12:0 a.m.•36 views

DSA-2906-1 linux-2.6 - several

Bulletin has no description...

10CVSS8AI score0.04627EPSS

Exploits14

OSV•added 2013/02/28 7:55 p.m.•1 views

DEBIAN-CVE-2013-0343

The ipv6createtempaddr function in net/ipv6/addrconf.c in the Linux kernel through 3.8 does not properly handle problems with the generation of IPv6 temporary addresses, which allows remote attackers to cause a denial of service excessive retries and address-generation outage, and consequently...

3.2CVSS7.1AI score0.00515EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by