Activemq@3.2.1 Security Vulnerabilities and Issues — Activemq@3.2.1 CVE List

Lucene search

ApacheActivemq3.2.1

3 matches found

CVE•added 2012/01/05 4:55 p.m.•99 views

CVE-2011-4905

Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor exhaustion and broker crash or hang) by sending many openwire failover:tcp:// connection requests.

5CVSS8.1AI score0.07735EPSS

CVE•added 2010/04/05 4:30 p.m.•63 views

CVE-2010-0684

Cross-site scripting (XSS) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote authenticated users to inject arbitrary web script or HTML via the JMSDestination parameter in a queue action.

3.5CVSS7.1AI score0.00286EPSS

CVE•added 2010/04/05 4:30 p.m.•57 views

CVE-2010-1244

Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests that create queues via the JMSDestination parameter in a queue action.

6.8CVSS7.2AI score0.00437EPSS