Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Hornetq
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-12174 2 Apache, Redhat 4 Activemq Artemis, Enterprise Linux, Hornetq and 1 more 2024-11-21 7.8 HIGH 7.5 HIGH
It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.
CVE-2014-3599 1 Redhat 1 Hornetq 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy
CVE-2024-51127 1 Redhat 1 Hornetq 2024-11-06 N/A 7.1 HIGH
An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.