CVE-2021-3763

Name of the Vulnerable Software and Affected Versions Red Hat AMQ Broker version 7.8

Description A flaw in the management console allows an existing user to access limited information, despite their role not being allowed access. This affects confidentiality due to incorrect role binding checks, disclosing privileged meta information like queue names and configuration details, though not all information is accessible. There is no impact on integrity.

Recommendations For Red Hat AMQ Broker version 7.8, consider restricting access to the management console until a fix is available. As a temporary workaround, review and adjust role bindings to minimize the disclosure of privileged information.