CVE-2018-8030

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-8030

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-8030.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-8030

Aliases

GHSA-7xr3-rgwh-pw22

Published

2018-06-20T01:29:03Z

Modified

2024-09-03T02:20:20.201756Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 7.0.0-7.0.4 when AMQP protocols 0-8, 0-9 or 0-91 are used to publish messages with size greater than allowed maximum message size limit (100MB by default). The broker crashes due to the defect. AMQP protocols 0-10 and 1.0 are not affected.

References

Affected packages

Git / github.com/apache/qpid-broker-j

Affected ranges

Type: GIT
Repo: https://github.com/apache/qpid-broker-j
Events: Introduced

82dc87ec35d0ac3f86c0d57e323a7083be771c23

Last affected

d95ae115732ef2802853dce8fa6c84768355ac64

Affected versions

7.*

7.0.0

7.0.1

7.0.2

7.0.3

7.0.4