Описание
A vulnerability exists in Apache ActiveMQ Artemis whereby a user with the createDurableQueue or createNonDurableQueue permission on an address can augment the routing-type supported by that address even if said user doesn't have the createAddress permission for that particular address. When combined with the send permission and automatic queue creation a user could successfully send a message with a routing-type not supported by the address when that message should actually be rejected on the basis that the user doesn't have permission to change the routing-type of the address.
This issue affects Apache ActiveMQ Artemis from 2.0.0 through 2.39.0.
Users are recommended to upgrade to version 2.40.0 which fixes the issue.
A flaw was found in Apache ActiveMQ Artemis. This vulnerability allows a user with createDurableQueue or createNonDurableQueue permissions to augment the routing-type of an address without the createAddress permission. When combined with the send permission and automatic queue creation, an attacker could send messages with unsupported routing-types, bypassing intended restrictions.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| AMQ Clients | artemis-core-client | Fix deferred | ||
| A-MQ Clients 2 | artemis-core-client | Fix deferred | ||
| Red Hat AMQ Broker 7 | artemis-core-client | Fix deferred | ||
| Red Hat build of Apache Camel 4 for Quarkus 3 | quarkus-camel-bom | Fix deferred | ||
| Red Hat build of Apache Camel 4 for Quarkus 3 | quarkus-cxf-bom | Fix deferred | ||
| Red Hat build of Apache Camel for Spring Boot 4 | artemis-core-client | Fix deferred | ||
| Red Hat build of OptaPlanner 8 | artemis-core-client | Fix deferred | ||
| Red Hat Fuse 7 | artemis-core-client | Fix deferred | ||
| Red Hat Integration Camel K 1 | artemis-core-client | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform 7 | artemis-core-client | Fix deferred |
Показывать по
Дополнительная информация
Статус:
EPSS
4.3 Medium
CVSS3
Связанные уязвимости
A vulnerability exists in Apache ActiveMQ Artemis whereby a user with the createDurableQueue or createNonDurableQueue permission on an address can augment the routing-type supported by that address even if said user doesn't have the createAddress permission for that particular address. When combined with the send permission and automatic queue creation a user could successfully send a message with a routing-type not supported by the address when that message should actually be rejected on the basis that the user doesn't have permission to change the routing-type of the address. This issue affects Apache ActiveMQ Artemis from 2.0.0 through 2.39.0. Users are recommended to upgrade to version 2.40.0 which fixes the issue.
Apache ActiveMQ Artemis User Without Create Address Permissions can Modify Address Routing-Type
Уязвимость асинхронной системы обмена сообщениями Apache ActiveMQ Artemis, связанная с некорректной авторизацией, позволяющая нарушителю получить доступ к конфиденциальной информации
EPSS
4.3 Medium
CVSS3