CVE-2022-23913

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Apache ActiveMQ Artemis versions prior to 2.20.0 Apache ActiveMQ Artemis versions prior to 2.19.1

Description The issue allows an attacker to partially disrupt availability through uncontrolled resource consumption of memory, leading to a denial-of-service (DoS) condition.

Recommendations For Apache ActiveMQ Artemis versions prior to 2.20.0, update to version 2.20.0 or later. For Apache ActiveMQ Artemis versions prior to 2.19.1, update to version 2.19.1 or later.

Exploit

Fix

DoS

Allocation of Resources Without Limits

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770CWE-400

Related Identifiers

CVE-2022-23913

GHSA-PR38-QPXM-G88X

RHSA-2022:4918

RHSA-2022:4919

RHSA-2022:7409

RHSA-2022:7410

RHSA-2022:7411

RHSA-2025:4226

RHSA-2025:4437

Affected Products

Apache Activemq Artemis

CVE-2022-23913

Weakness Enumeration

Related Identifiers

Affected Products

References · 17