Apache ActiveMQ broker Security Bypass Vulnerability (CVE-2018-11775) - Code World

Apache ActiveMQ broker Security Bypass Vulnerability (CVE-2018-11775)

News 2019-06-13 03:21:24 views: null

Apache ActiveMQ broker Security Bypass Vulnerability (CVE-2018-11775)

Release Date: 2019-06-10
Updated: 2019-06-11

Affected Systems:

FLEXCUBE Private Banking 2.2 1
Oracle FLEXCUBE Private Banking 2.0.0.0
Oracle FLEXCUBE Private Banking 12.1.0.0
Oracle FLEXCUBE Private Banking 12.0.3.0
Oracle FLEXCUBE Private Banking 12.0.1.0
Oracle Enterprise Repository 12.1.3.0.0
Apache ActiveMQ 5.9.1
Apache ActiveMQ 5.6
Apache ActiveMQ 5.5.1
Apache ActiveMQ 5.5
Apache ActiveMQ 5.4.3
Apache ActiveMQ 5.4.2
Apache ActiveMQ 5.4.1
Apache ActiveMQ 5.4.0
Apache ActiveMQ 5.3.2
Apache ActiveMQ 5.15.5
Apache ActiveMQ 5.15.3
Apache ActiveMQ 5.15
Apache ActiveMQ 5.14.5
Apache ActiveMQ 5.14.2
Apache ActiveMQ 5.14.1
Apache ActiveMQ 5.1.0

Systems affected:

Apache ActiveMQ 5.15.6

description:

Manufacturers patch:

the Apache
------
the Apache has released a security bulletin (CVE-2018-11775) and the corresponding patch:
CVE-2018-11775: ActiveMQ Client - TLS Hostname Verification Missing
Link: HTTP: // ActiveMQ .apache.org / security-advisories.data / CVE-2018-11775-

announcement.txt patch download:

the Oracle
------
the Oracle has released a security bulletin (CVE-2018-11775) and the corresponding patch:
CVE-2018-11775: Oracle Critical Patch Update Advisory - April 2019
Links: https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Guess you like

Origin www.linuxidc.com/Linux/2019-06/159039.htm

Apache ActiveMQ broker Security Bypass Vulnerability (CVE-2018-11775)

Apache ActiveMQ брокера безопасности Обход (CVE-2018-11775)

Apache ActiveMQ vulnerability notes

Spring Security has an authentication bypass vulnerability CVE-2021-22096

Spring Security authentication bypass vulnerability CVE-2023-34035

[Vulnerability notice] Apache Shiro exploded authentication bypass vulnerability CVE-2023-34478, vulnerability level: high risk

Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2016-3088)

DVR login bypass vulnerability _CVE-2018-9995 vulnerability reproducibility

The ActiveMQ Broker

Apache parsing vulnerability reproduction (CVE-2017-15715), can bypass blacklist

Allegro RomPager HTTP Cookie deal with security restrictions Bypass Vulnerability (CVE-2014-9222)

Security bypass vulnerability CVE-2023-20873 using wildcard pattern matching on Spring Cloud Foundry

Apache ActiveMQ Fileserver Remote Code Execution Vulnerability (CVE-2016-3088)

Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2016-3088) analysis

Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2016-3088) reproduction

[Critical] Apache Airflow Run Task Permission Bypass Vulnerability

[Security Test] A simple way to bypass the front-end XSS vulnerability

Nacos Identity Authentication Bypass Vulnerability Security Risk Notice

Shiro authentication bypass vulnerability CVE-2020-1957 vulnerability recurrence

On activeMQ (three) broker Source

Broker ActiveMQ learning

Embedded ActiveMQ broker in java

ActiveMQ inactive broker

The files containing the security bulletin on the vulnerability of Apache Tomcat

[Security Learning] Vulnerability Description in Apache Notice

Vulnerability in-depth analysis | Apache StreamPipes has a permission bypass vulnerability that leads to vertical overreach

Service Attack and Defense - Middleware Security & CVE Reappearance & IIS & Apache & Tomcat & Nginx Vulnerability Reappearance

Cisco IOS software authentication bypass vulnerability (CVE-2019-1758)

CVE-2019-6342: Drupal to access Bypass Vulnerability Alert

[CVE-2020-13957] Solr configset permission bypass vulnerability

Recommended

微软回应中国区AI团队“打包赴美”传闻

Ranking

How to use ChatGPT to write 100,000+ hot articles for public accounts (includes prompt words)

sudo echo command execution Permission denied

ADO: Using Transactions to Operate Oracle Database

[Java] [Class and Object] equals, hashCode, clone methods

Linux virtual host function

Порт управления rabbitmq открыт

on,where

jQuery WeUI

How can there be a weed pilot in Hangzhou?

tcp / ip model four

Daily

More

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)