A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 6.0.0-7.0.6 (inclusive) and 7.1.0 which allows an unauthenticated attacker to crash the broker instance by sending specially crafted commands using AMQP protocol versions below 1.0 (AMQP 0-8, 0-9, 0-91 and 0-10). Users of Apache Qpid Broker-J versions 6.0.0-7.0.6 (inclusive) and 7.1.0 utilizing AMQP protocols 0-8, 0-9, 0-91, 0-10 must upgrade to Qpid Broker-J versions 7.0.7 or 7.1.1 or later.
{
"cpe": [
"cpe:2.3:a:apache:qpid_broker-j:*:*:*:*:*:*:*:*",
"cpe:2.3:a:apache:qpid_broker-j:7.1.0:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "6.0.0"
},
{
"last_affected": "7.0.6"
},
{
"introduced": "7.1.0"
},
{
"last_affected": "7.1.0"
}
],
"source": [
"CPE_RANGE",
"CPE_STRING"
]
}