Описание
When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия от 5.14.0 (включая) до 5.15.2 (включая)
cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.65728
Средний
3.7 Low
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 3.7
ubuntu
почти 8 лет назад
When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.
CVSS3: 3.5
redhat
почти 8 лет назад
When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 it was found that certain system details (such as the OS and kernel version) are exposed as plain text.
CVSS3: 3.7
debian
почти 8 лет назад
When using the OpenWire protocol in ActiveMQ versions 5.14.0 to 5.15.2 ...
CVSS3: 3.7
github
больше 3 лет назад
ActiveMQ's OpenWire protocol exposes certain system details as plain text
EPSS
Процентиль: 98%
0.65728
Средний
3.7 Low
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-200