CVE-2023-1932
- EPSS 0.23%
- Veröffentlicht 07.11.2024 10:15:04
- Zuletzt bearbeitet 24.06.2025 13:07:42
A flaw was found in hibernate-validator's 'isValid' method in the org.hibernate.validator.internal.constraintvalidators.hv.SafeHtmlValidator class, which can be bypassed by omitting the tag ending in a less-than character. Browsers may render an inva...
CVE-2021-4040
- EPSS 4.24%
- Veröffentlicht 24.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:36:46
A flaw was found in AMQ Broker. This issue can cause a partial interruption to the availability of AMQ Broker via an Out of memory (OOM) condition. This flaw allows an attacker to partially disrupt availability to the broker through a sustained attac...
CVE-2021-3763
- EPSS 0.17%
- Veröffentlicht 23.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:22:22
A flaw was found in the Red Hat AMQ Broker management console in version 7.8 where an existing user is able to access some limited information even when the role the user is assigned to should not be allow access to the management console. The main i...
CVE-2022-1833
- EPSS 0.32%
- Veröffentlicht 21.06.2022 15:15:08
- Zuletzt bearbeitet 21.11.2024 06:41:34
A flaw was found in AMQ Broker Operator 7.9.4 installed via UI using OperatorHub where a low-privilege user that has access to the namespace where the AMQ Operator is deployed has access to clusterwide edit rights by checking the secrets. The service...