CVE-2011-3620

Apache Qpid 0.12 does not properly verify credentials during the joining of a cluster, which allows remote attackers to obtain access to the messaging functionality and job functionality of a cluster by leveraging knowledge of a cluster-username.
Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:qpid:0.12:*:*:*:*:*:*:*

History

No history.

Information

Published : 2012-05-03 23:55

Updated : 2024-02-28 12:00


NVD link : CVE-2011-3620

Mitre link : CVE-2011-3620

CVE.ORG link : CVE-2011-3620


JSON object : View

Products Affected

apache

  • qpid
CWE
CWE-287

Improper Authentication