CVE-2014-3576

Опубликовано: 14 авг. 2015

Источник: ubuntu

Приоритет: high

EPSS Средний

CVSS2: 5

CVSS3: 7.5

Описание

The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.

Релиз	Статус	Примечание
devel	not-affected	5.13.2+dfsg-2
esm-apps/xenial	not-affected	5.13.2+dfsg-2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [5.6.0+dfsg-1+deb7u1build0.14.04.1]]
precise	ignored	end of life
precise/esm	DNE	precise was needed
trusty	released	5.6.0+dfsg-1+deb7u1build0.14.04.1
trusty/esm	DNE	trusty was released [5.6.0+dfsg-1+deb7u1build0.14.04.1]
upstream	released	5.11.0
utopic	ignored	end of life
vivid	released	5.6.0+dfsg1-4+deb8u1

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2014-3576

EPSS

Процентиль: 93%

0.11345

Средний

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2014-3576

redhat

больше 10 лет назад

The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.

CVE-2014-3576

CVSS3: 7.5

nvd

больше 10 лет назад

The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.

CVE-2014-3576

CVSS3: 7.5

debian

больше 10 лет назад

The processControlCommand function in broker/TransportConnection.java ...

GHSA-3wfj-vh84-732p

CVSS3: 7.5

github

больше 3 лет назад

Improper Neutralization of Special Elements used in an OS Command in Apache ActiveMQ

EPSS

Процентиль: 93%

0.11345

Средний

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2014-3576

Описание

Пакет activemq

Ссылки на источники

Связанные уязвимости