Apache Qpid 0.12 does not properly verify credentials during the joining of a cluster, which allows remote malicious users to obtain access to the messaging functionality and job functionality of a cluster by leveraging knowledge of a cluster-username.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache qpid 0.12 |