Filtered by vendor Redhat Subscriptions
Filtered by product Hornetq Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-51127 1 Redhat 2 Hornetq, Jboss Enterprise Application Platform 2024-11-21 7.1 High
An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.
CVE-2017-12174 2 Apache, Redhat 5 Activemq Artemis, Enterprise Linux, Hornetq and 2 more 2024-11-21 7.5 High
It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.
CVE-2014-3599 1 Redhat 1 Hornetq 2024-11-21 6.5 Medium
HornetQ REST is vulnerable to XML External Entity due to insecure configuration of RestEasy