ghsa-4h8h-q487-wmvf
Vulnerability from github
Published
2022-05-24 19:03
Modified
2022-05-24 19:03
Details
A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when provided in the AMQ Broker application logfile when using the jdbc persistence functionality. Versions shipped in Red Hat AMQ 7 are vulnerable.
{ "affected": [], "aliases": [ "CVE-2021-3425" ], "database_specific": { "cwe_ids": [ "CWE-532" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2021-06-01T20:15:00Z", "severity": "MODERATE" }, "details": "A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when provided in the AMQ Broker application logfile when using the jdbc persistence functionality. Versions shipped in Red Hat AMQ 7 are vulnerable.", "id": "GHSA-4h8h-q487-wmvf", "modified": "2022-05-24T19:03:40Z", "published": "2022-05-24T19:03:40Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3425" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1936629" } ], "schema_version": "1.4.0", "severity": [] }
Loading...