Vulnerabilities > CVE-2021-3425 - Unspecified vulnerability in Redhat Jboss A-Mq 7

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

redhat

NVD

Published: 2021-06-01

Updated: 2024-11-21

Summary

A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when provided in the AMQ Broker application logfile when using the jdbc persistence functionality. Versions shipped in Red Hat AMQ 7 are vulnerable.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Jboss A MQ 7	1

References

https://bugzilla.redhat.com/show_bug.cgi?id=1936629
https://bugzilla.redhat.com/show_bug.cgi?id=1936629