Lucene search
PRIOn knowledge basePRION:CVE-2014-3579HistoryOct 27, 2017 - 7:29 p.m.
Xxe
2017-10-2719:29:00
PRIOn knowledge base
www.prio-n.com
5
XML external entity (XXE) vulnerability in Apache ActiveMQ Apollo 1.x before 1.7.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| activemq_apollo | eq | 1.7 | |
| activemq_apollo | eq | 1.6 | |
| activemq_apollo | eq | 1.5 | |
| activemq_apollo | eq | 1.4 | |
| activemq_apollo | eq | 1.3 | |
| activemq_apollo | eq | 1.2 | |
| activemq_apollo | eq | 1.1 | |
| activemq_apollo | eq | 1.0 |
References
activemq.apache.org/security-advisories.data/CVE-2014-3579-announcement.txt
seclists.org/oss-sec/2015/q1/428
www.securityfocus.com/bid/72508
exchange.xforce.ibmcloud.com/vulnerabilities/100721
issues.apache.org/jira/browse/APLO-366
lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3E
Related
cve
cve
CVE-2014-3579
2017-10-27 19:29:00
cvelist
cvelist
CVE-2014-3579
2017-10-27 19:00:00
github
github
Apache ActiveMQ Apollo XXE Vulnerability
2022-05-14 01:14:52
nvd
nvd
CVE-2014-3579
2017-10-27 19:29:00
osv
osv
Apache ActiveMQ Apollo XXE Vulnerability
2022-05-14 01:14:52
