Search Results | AttackerKB

Show filters

Topics 3 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

3 Total Results

Displaying 1-3 of 3

Attacker Value

Unknown

CVE-2024-51127

Disclosure Date: November 04, 2024 (last updated November 07, 2024)

An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.

Attack Vector: Local Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2014-3599

Disclosure Date: November 12, 2019 (last updated November 27, 2024)

HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2017-12174

Disclosure Date: March 07, 2018 (last updated November 26, 2024)

It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.

Attack Vector: Network Privileges: None User Interaction: None

0