Vulnerabilities > CVE-2014-3599 - XXE vulnerability in Redhat Hornetq

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

NVD

Published: 2019-11-12

Updated: 2019-11-14

Summary

HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy

Part	Description	Count
Application	Redhat Redhat Hornetq - Redhat Hornetq 2.0.0 Redhat Hornetq 2.1.0 Redhat Hornetq 2.1.1 Redhat Hornetq 2.1.2 Redhat Hornetq 2.2.2 Redhat Hornetq 2.2.5 Redhat Hornetq 2.2.14 Redhat Hornetq 2.3.0 Redhat Hornetq 2.4.0 Redhat Hornetq 2.4.5	23