Lucene search
K

5 matches found

OSV
OSV
added 2022/05/17 3:22 a.m.2 views

GHSA-23CR-5HR4-RGWV Improper Input Validation in Apache ActiveMQ

The LDAPLoginModule implementation in the Java Authentication and Authorization Service JAAS in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attackers to obtain credentials via a brute force attack. NOTE: this identifier was SPLIT from CVE-2014-361...

7.5CVSS7.2AI score0.08468EPSS
Exploits1References6
OSV
OSV
added 2015/08/24 2:59 p.m.8 views

CVE-2015-6524

The LDAPLoginModule implementation in the Java Authentication and Authorization Service JAAS in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attackers to obtain credentials via a brute force attack. NOTE: this identifier was SPLIT from CVE-2014-361...

7.5CVSS6.2AI score0.07378EPSS
Exploits1References3
OSV
OSV
added 2015/08/24 2:59 p.m.1 views

DEBIAN-CVE-2015-6524

The LDAPLoginModule implementation in the Java Authentication and Authorization Service JAAS in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attackers to obtain credentials via a brute force attack. NOTE: this identifier was SPLIT from CVE-2014-361...

5CVSS7.5AI score0.08468EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2015/08/24 2:59 p.m.28 views

CVE-2015-6524

The LDAPLoginModule implementation in the Java Authentication and Authorization Service JAAS in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attackers to obtain credentials via a brute force attack. NOTE: this identifier was SPLIT from CVE-2014-361...

5CVSS6.9AI score0.08468EPSS
Exploits1References2
OSV
OSV
added 2015/08/24 2:59 p.m.5 views

UBUNTU-CVE-2015-6524

The LDAPLoginModule implementation in the Java Authentication and Authorization Service JAAS in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attackers to obtain credentials via a brute force attack. NOTE: this identifier was SPLIT from CVE-2014-361...

7.5CVSS6.9AI score0.08468EPSS
Exploits1References3
Rows per page
Query Builder