Security Advisory

CVE-2012-4446

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-03-12 15:00:00

Last updated 2024-09-16 18:34:59

Assigner redhat

State PUBLISHED

Description

The default configuration for Apache Qpid 0.20 and earlier, when the federation_tag attribute is enabled, accepts AMQP connections without checking the source user ID, which allows remote attackers to bypass authentication and have other unspecified impact via an AMQP request.

← Browse all CVEs View on cve.org ↗