Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-7559

Опубликовано: 01 авг. 2019
Источник: nvd
CVSS3: 2.7
CVSS3: 2.7
CVSS2: 4
EPSS Низкий

Описание

It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:*
Версия до 5.14.5 (исключая)
cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:*
Версия от 5.15.0 (включая) до 5.15.5 (исключая)
Конфигурация 2

Одно из

cpe:2.3:a:redhat:jboss_a-mq:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_a-mq:6.3:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_fuse:6.3:*:*:*:*:*:*:*

EPSS

Процентиль: 24%
0.00082
Низкий

2.7 Low

CVSS3

2.7 Low

CVSS3

4 Medium

CVSS2

Дефекты

CWE-306
CWE-20

Связанные уязвимости

ubuntu логотип

CVE-2015-7559

CVSS3: 2.7
ubuntu
больше 6 лет назад

It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client.

redhat логотип

CVE-2015-7559

CVSS3: 2.7
redhat
почти 9 лет назад

It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client.

debian логотип

CVE-2015-7559

CVSS3: 2.7
debian
больше 6 лет назад

It was found that the Apache ActiveMQ client before 5.14.5 exposed a r ...

github логотип

GHSA-jvpp-hxjj-5ccc

CVSS3: 4.9
github
больше 6 лет назад

Improper Input Validation and Missing Authentication for Critical Function in Apache ActiveMQ

EPSS

Процентиль: 24%
0.00082
Низкий

2.7 Low

CVSS3

2.7 Low

CVSS3

4 Medium

CVSS2

Дефекты

CWE-306
CWE-20