5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
activemq-broker is vulnerable to man-in-the-middle(MitM) attack. It binds the server to jmxrmi
entry after creating JMX RMI registry using LocateRegistry.createRegistry()
, leading to the connection to the registry without authentication and allowing rebinding of jmxrmi to any other entity. Therefore, if an attacker can successfully create a malicious server to proxy the original and perform RMI rebinding when a user connects, confidential information can be intercepted.
CPE | Name | Operator | Version |
---|---|---|---|
activemq :: broker | le | 5.15.11 | |
activemq :: broker | le | 5.14.5 | |
activemq :: broker | le | 5.15.11 | |
activemq :: broker | le | 5.14.5 |
activemq.apache.org/security-advisories.data/CVE-2020-13920-announcement.txt
github.com/apache/activemq/commit/5263883d37ee9df336776f8f906aebfb13189ece
lists.apache.org/thread.html/r946488fb942fd35c6a6e0359f52504a558ed438574a8f14d36d7dcd7@%3Ccommits.activemq.apache.org%3E
lists.apache.org/thread.html/rb2fd3bf2dce042e0ab3f3c94c4767c96bb2e7e6737624d63162df36d@%3Ccommits.activemq.apache.org%3E
lists.debian.org/debian-lts-announce/2020/10/msg00013.html
www.oracle.com/security-alerts/cpuoct2020.html
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N