CVE-2019-0200

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-0200
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-0200.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-0200
Aliases
Published
2019-03-06T18:29:00.247Z
Modified
2026-04-10T04:11:40.151864Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 6.0.0-7.0.6 (inclusive) and 7.1.0 which allows an unauthenticated attacker to crash the broker instance by sending specially crafted commands using AMQP protocol versions below 1.0 (AMQP 0-8, 0-9, 0-91 and 0-10). Users of Apache Qpid Broker-J versions 6.0.0-7.0.6 (inclusive) and 7.1.0 utilizing AMQP protocols 0-8, 0-9, 0-91, 0-10 must upgrade to Qpid Broker-J versions 7.0.7 or 7.1.1 or later.

References

Affected packages

Git / github.com/apache/qpid-broker-j

Affected ranges

Type
GIT
Repo
https://github.com/apache/qpid-broker-j
Events
Introduced
8680024c437e0d97489fe50af6e3b0cd2825476b
Last affected
cc29d4b6758f32ae6aef51550ee9018e5a7518ac
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
5cb4ba20207da1390c79ef8b654a395e58dad5a0
Database specific 
{
    "versions": [
        {
            "introduced": "6.0.0"
        },
        {
            "last_affected": "7.0.6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.1.0"
        }
    ]
}

Affected versions

7.*
7.0.0
7.0.1
7.0.2
7.0.3
7.0.4
7.0.5
7.0.6
7.1.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-0200.json"