Redhat Hornetq vulnerabilities
3 known vulnerabilities affecting redhat/hornetq.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-51127HIGHCVSS 7.1≤ 2.4.92024-11-04
CVE-2024-51127 [HIGH] CWE-22 CVE-2024-51127: An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite fi
An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.
nvd
CVE-2014-3599MEDIUMCVSS 6.5≤ 2.4.52019-11-12
CVE-2014-3599 [MEDIUM] CWE-611 CVE-2014-3599: HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy
HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy
nvd
CVE-2017-12174HIGHCVSS 7.5fixed in 2.4.02018-03-07
CVE-2017-12174 [HIGH] CWE-400 CVE-2017-12174: It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroup
It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.
nvd