Redhat HornetQ

CPE Details

Redhat HornetQ
redhat
hornetq
-
2019-11-14
18h51 +00:00
2019-11-14
18h51 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:hornetq:-:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

hornetq

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-51127 2024-11-03 23h00 +00:00 An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.
9.1
Critical
CVE-2014-3599 2019-11-12 12h27 +00:00 HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy
6.5
Medium
CVE-2017-12174 2018-03-07 22h00 +00:00 It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.
7.5
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.