PT-2023-27571 · Red Hat · Red Hat Amq Broker Operator

Chess Hazlett

Publicado

2023-09-26

Atualizado

2024-07-03

CVE-2023-4065

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Red Hat AMQ Broker Operator (affected versions not specified)

Description A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in ActiveMQArtemisAddress CR, shown in plain text in the Operator Log. This flaw allows an authenticated local attacker to access information outside of their permissions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Default Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-117CWE-276

Identificadores relacionados

CVE-2023-4065

Produtos afetados

Red Hat Amq Broker Operator

PT-2023-27571 · Red Hat · Red Hat Amq Broker Operator

CVE-2023-4065

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6