Описание
A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 7.0.0-7.0.4 when AMQP protocols 0-8, 0-9 or 0-91 are used to publish messages with size greater than allowed maximum message size limit (100MB by default). The broker crashes due to the defect. AMQP protocols 0-10 and 1.0 are not affected.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 7.0.0 (включая) до 7.0.4 (включая)
cpe:2.3:a:apache:qpid_broker-j:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00906
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 7.5
debian
больше 7 лет назад
A Denial of Service vulnerability was found in Apache Qpid Broker-J ve ...
CVSS3: 7.5
github
больше 7 лет назад
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents
EPSS
Процентиль: 75%
0.00906
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20