A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in ActiveMQArtemisAddress CR, shown in plain text in the Operator Log. This flaw allows an authenticated local attacker to access information outside of their permissions.
History

Fri, 20 Sep 2024 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2023-09-26T13:25:23.092Z

Updated: 2024-11-22T23:58:07.331Z

Reserved: 2023-08-01T18:02:17.631Z

Link: CVE-2023-4065

cve-icon Vulnrichment

Updated: 2024-08-02T07:17:11.149Z

cve-icon NVD

Status : Modified

Published: 2023-09-27T15:19:39.947

Modified: 2024-11-21T08:34:19.893

Link: CVE-2023-4065

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-08-23T00:00:00Z

Links: CVE-2023-4065 - Bugzilla