CVE-2015-5184

Published: Sep 25, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Console: CORS headers set to allow all in Red Hat AMQ.

Affected (2)

Products: Redhat: Amq, Jboss Enterprise Web Server

2 products

Jboss Enterprise Web Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Amq	Before 6.2.1
Redhat Jboss Enterprise Web Server	Version 1.0.0

References (6)

https://bugzilla.redhat.com/show_bug.cgi?id=1249183

Source: secalert@redhat.com

Issue TrackingVendor Advisory

https://lists.apache.org/thread.html/9e3391878c6840b294155f7ba6ccb47586e317f85c1bbd15c4608bd0%40%3Cdev.activemq.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/rb280e767ab199767e07a367f287ba08a9692fa76e2da4a20d50d07c4%40%3Cdev.activemq.apache.org%3E

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1249183

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVendor Advisory

https://lists.apache.org/thread.html/9e3391878c6840b294155f7ba6ccb47586e317f85c1bbd15c4608bd0%40%3Cdev.activemq.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.apache.org/thread.html/rb280e767ab199767e07a367f287ba08a9692fa76e2da4a20d50d07c4%40%3Cdev.activemq.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.