Page 2 of 11 results (0.005 seconds)
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0CVE-2012-3467 – qpid-cpp-server-cluster: unauthorized broker access caused by the use of NullAuthenticator catch-up shadow connections
https://notcve.org/view.php?id=CVE-2012-3467
27 Aug 2012 — Apache QPID 0.14, 0.16, and earlier uses a NullAuthenticator mechanism to authenticate catch-up shadow connections to AMQP brokers, which allows remote attackers to bypass authentication. Apache Qpid v0.14, v0.16, y anteriores utiliza un mecanismo NullAuthenticator para autenticar conexiones de puesta al día de sombra a los corredores AMQP, lo que permite a atacantes remotos evitar la autenticación. • http://rhn.redhat.com/errata/RHSA-2012-1277.html • CWE-287: Improper Authentication •