You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "Jean-Baptiste Onofré (Jira)" <ji...@apache.org> on 2020/01/22 05:29:00 UTC

[jira] [Assigned] (AMQ-7373) jolokia-core-1.6.0.jar is vulnerable to CVE-2018-10899

     [ https://issues.apache.org/jira/browse/AMQ-7373?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jean-Baptiste Onofré reassigned AMQ-7373:
-----------------------------------------

    Assignee: Jean-Baptiste Onofré

> jolokia-core-1.6.0.jar is vulnerable to CVE-2018-10899
> ------------------------------------------------------
>
>                 Key: AMQ-7373
>                 URL: https://issues.apache.org/jira/browse/AMQ-7373
>             Project: ActiveMQ
>          Issue Type: Bug
>          Components: Web Console
>    Affects Versions: 5.15.8, 5.15.9, 5.15.10, 5.15.11
>            Reporter: Harish Kumar
>            Assignee: Jean-Baptiste Onofré
>            Priority: Critical
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> jolokia-core-1.6.0.jar is vulnerable to CVE-2018-10899
> *PATH:*apache-activemq-5.15.11/lib/web/jolokia-core-1.6.0.jar
>  
> *CVE-2018-10899*
> CVSSv3 Score: 8.8
> [https://nvd.nist.gov/vuln/detail/CVE-2018-10899] 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)