CVE-2022-23913

Summary

In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache ActiveMQ Artemis2.19.0 < 2.20.0affected

Weaknesses

  • CWE-770: CWE-770 Allocation of Resources Without Limits or Throttling

Workarounds

Upgrade to Apache ActiveMQ Artemis 2.20.0 or 2.19.1 (if you're still using Java 8).

ADP Enrichment

CVE Program Container

Additional References

References