Lucene search
Veracode Vulnerability DatabaseVERACODE:34020HistoryFeb 07, 2022 - 6:12 a.m.
Denial Of Service (DoS)
2022-02-0706:12:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
50.5%
Apache ActiveMQ Artemis is vulnerable to denial of service. The vulnerability exists due to an out of memory error when passing XID allowing an attacker to crash the system by maliciously amending the packet to show a smaller size than the packet itself.
References
github.com/apache/activemq-artemis/pull/3862
github.com/apache/activemq-artemis/pull/3862/commits/1f92368240229b8f5db92a92a72c703faf83e9b7
github.com/apache/activemq-artemis/pull/3871
github.com/apache/activemq-artemis/pull/3871/commits/153d2e9a979aead8dff95fbc91d659ecc7d0fb82
issues.apache.org/jira/browse/ARTEMIS-3593
lists.apache.org/thread/fjynj57rd99s814rdn5hzvmx8lz403q2
security.netapp.com/advisory/ntap-20220303-0003/
Related
nvd
nvd
CVE-2022-23913
2022-02-04 23:15:15
redhatcve
redhatcve
CVE-2022-23913
2022-03-14 02:15:14
prion
prion
Design/Logic Flaw
2022-02-04 23:15:00
github
github
Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
2022-02-06 00:00:55
osv
osv
Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
2022-02-06 00:00:55
CVE-2022-23913
2022-02-04 23:15:15
cnvd
cnvd
Apache ActiveMQ Resource Management Error Vulnerability (CNVD-2022-14699)
2022-02-21 00:00:00
cvelist
cvelist
CVE-2022-23913 Apache ActiveMQ Artemis DoS
2022-02-04 22:33:01
cve
cve
CVE-2022-23913
2022-02-04 23:15:15
redhat
redhat
nessus
nessus
