Activemq@5.13.0 Security Vulnerabilities and Issues — Activemq@5.13.0 CVE List

Lucene search

ApacheActivemq5.13.0

2 matches found

CVE•added 2016/04/07 7:59 p.m.•81 views

CVE-2016-0734

The web-based administration console in Apache ActiveMQ 5.x before 5.13.2 does not send an X-Frame-Options HTTP header, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web page that contains a (1) FRAME or (2) IFRAME element.

6.1CVSS6.1AI score0.04501EPSS

CVE•added 2016/08/05 3:59 p.m.•81 views

CVE-2016-0782

The administration web console in Apache ActiveMQ 5.x before 5.11.4, 5.12.x before 5.12.3, and 5.13.x before 5.13.2 allows remote authenticated users to conduct cross-site scripting (XSS) attacks and consequently obtain sensitive information from a Java memory dump via vectors related to creating a...

5.4CVSS5.1AI score0.01571EPSS