You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@activemq.apache.org by "Jean-Baptiste Onofré (Jira)" <ji...@apache.org> on 2020/01/22 05:29:00 UTC
[jira] [Assigned] (AMQ-7373) jolokia-core-1.6.0.jar is vulnerable
to CVE-2018-10899
[ https://issues.apache.org/jira/browse/AMQ-7373?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jean-Baptiste Onofré reassigned AMQ-7373:
-----------------------------------------
Assignee: Jean-Baptiste Onofré
> jolokia-core-1.6.0.jar is vulnerable to CVE-2018-10899
> ------------------------------------------------------
>
> Key: AMQ-7373
> URL: https://issues.apache.org/jira/browse/AMQ-7373
> Project: ActiveMQ
> Issue Type: Bug
> Components: Web Console
> Affects Versions: 5.15.8, 5.15.9, 5.15.10, 5.15.11
> Reporter: Harish Kumar
> Assignee: Jean-Baptiste Onofré
> Priority: Critical
> Time Spent: 10m
> Remaining Estimate: 0h
>
> jolokia-core-1.6.0.jar is vulnerable to CVE-2018-10899
> *PATH:*apache-activemq-5.15.11/lib/web/jolokia-core-1.6.0.jar
>
> *CVE-2018-10899*
> CVSSv3 Score: 8.8
> [https://nvd.nist.gov/vuln/detail/CVE-2018-10899]
--
This message was sent by Atlassian Jira
(v8.3.4#803005)