Vulnerabilities > CVE-2020-14348 - Improper Check for Unusual or Exceptional Conditions vulnerability in Redhat AMQ Online

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

redhat

CWE-754

NVD

Published: 2020-09-16

Updated: 2020-09-23

Summary

It was found in AMQ Online before 1.5.2 that injecting an invalid field to a user's AddressSpace configuration of the user namespace puts AMQ Online in an inconsistent state, where the AMQ Online components do not operate properly, such as the failure of provisioning and the failure of creating addresses, though this does not impact upon already existing messaging clients or brokers.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat AMQ Online -	1

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

https://bugzilla.redhat.com/show_bug.cgi?id=1861814