Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

21 – 30 of 32 results


CVE-2015-6524

Medium priority

Some fixes available 1 of 3

The LDAPLoginModule implementation in the Java Authentication and Authorization Service (JAAS) in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attackers to obtain credentials via a...

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq Not affected
Show less packages

CVE-2014-3612

Medium priority

Some fixes available 1 of 2

The LDAPLoginModule implementation in the Java Authentication and Authorization Service (JAAS) in Apache ActiveMQ 5.x before 5.10.1 allows remote attackers to bypass authentication by logging in with an empty password and valid...

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq Not affected
Show less packages

CVE-2015-1830

Medium priority
Ignored

Directory traversal vulnerability in the fileserver upload/download functionality for blob messages in Apache ActiveMQ 5.x before 5.11.2 for Windows allows remote attackers to create JSP files in arbitrary directories via...

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages

CVE-2014-3576

High priority

Some fixes available 2 of 4

The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq Not affected
Show less packages

CVE-2014-8110

Low priority
Ignored

Multiple cross-site scripting (XSS) vulnerabilities in the web based administration console in Apache ActiveMQ 5.x before 5.10.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages

CVE-2014-0003

Medium priority
Ignored

The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message.

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages

CVE-2013-1880

Negligible priority
Ignored

Cross-site scripting (XSS) vulnerability in the Portfolio publisher servlet in the demo web application in Apache ActiveMQ before 5.9.0 allows remote attackers to inject arbitrary web script or HTML via the refresh parameter to...

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages

CVE-2013-1879

Medium priority
Ignored

Cross-site scripting (XSS) vulnerability in scheduled.jsp in Apache ActiveMQ 5.8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors involving the "cron of a message."

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages

CVE-2013-3060

Medium priority
Ignored

The web console in Apache ActiveMQ before 5.8.0 does not require authentication, which allows remote attackers to obtain sensitive information or cause a denial of service via HTTP requests.

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages

CVE-2012-6551

Medium priority
Ignored

The default configuration of Apache ActiveMQ before 5.8.0 enables a sample web application, which allows remote attackers to cause a denial of service (broker resource consumption) via HTTP requests.

1 affected packages

activemq

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
activemq
Show less packages