CVE-2017-15709

Опубликовано: 13 фев. 2018

Источник: debian

EPSS Средний

Описание

When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
activemq	fixed	5.15.3-1		package
activemq	not-affected		jessie	package
activemq	not-affected		wheezy	package

EPSS

Процентиль: 98%

0.65728

Средний

Связанные уязвимости

CVE-2017-15709

CVSS3: 3.7

ubuntu

почти 8 лет назад

When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.

CVE-2017-15709

CVSS3: 3.5

redhat

почти 8 лет назад

When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.

CVE-2017-15709

CVSS3: 3.7

nvd

почти 8 лет назад

When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.

GHSA-7qm4-p377-fr2r

CVSS3: 3.7

github

больше 3 лет назад

ActiveMQ's OpenWire protocol exposes certain system details as plain text

EPSS

Процентиль: 98%

0.65728

Средний