GHSA-pr38-qpxm-g88x
Suggest an improvement- Source
- https://github.com/advisories/GHSA-pr38-qpxm-g88x
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/02/GHSA-pr38-qpxm-g88x/GHSA-pr38-qpxm-g88x.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-pr38-qpxm-g88x
- Aliases
- Published
- 2022-02-06T00:00:55Z
- Modified
- 2024-02-21T05:41:32.704182Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
- Details
-
In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.
- Database specific
{ "nvd_published_at": "2022-02-04T23:15:00Z", "severity": "HIGH", "github_reviewed_at": "2022-02-08T17:52:10Z", "github_reviewed": true, "cwe_ids": [ "CWE-400", "CWE-770" ] }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2022-23913
- https://github.com/github/codeql-java-CVE-coverage/issues/1061
- https://github.com/apache/activemq-artemis/pull/3862
- https://github.com/apache/activemq-artemis/pull/3862/commits/1f92368240229b8f5db92a92a72c703faf83e9b7
- https://github.com/apache/activemq-artemis/pull/3871
- https://github.com/apache/activemq-artemis/pull/3871/commits/153d2e9a979aead8dff95fbc91d659ecc7d0fb82
- https://github.com/apache/activemq-artemis
- https://issues.apache.org/jira/browse/ARTEMIS-3593
- https://lists.apache.org/thread/fjynj57rd99s814rdn5hzvmx8lz403q2
- https://security.netapp.com/advisory/ntap-20220303-0003
Affected packages
Maven / org.apache.activemq:artemis-core-client
Package
- Name
- org.apache.activemq:artemis-core-client
- View open source insights on deps.dev
- Purl
- pkg:maven/org.apache.activemq/artemis-core-client