Security Advisory

CVE-2021-26118

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-27 18:55:13

Last updated 2025-02-13 16:27:51

Assigner apache

State PUBLISHED

Description

While investigating ARTEMIS-2964 it was found that the creation of advisory messages in the OpenWire protocol head of Apache ActiveMQ Artemis 2.15.0 bypassed policy based access control for the entire session. Production of advisory messages was not subject to access control in error.

← Browse all CVEs View on cve.org ↗