CVE-2021-20318
N/A
N/A
Summary
The HornetQ component of Artemis in EAP 7 was not updated with the fix for CVE-2016-4978. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using a JMS ObjectMessage.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Artemis in EAP 7 | 7.3.9.GA, 7.4.0.GA | affected |
Weaknesses
- CWE-502: CWE-502
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.