Vulnerability Details CVE-2023-4065
A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in ActiveMQArtemisAddress CR, shown in plain text in the Operator Log. This flaw allows an authenticated local attacker to access information outside of their permissions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.0%
CVSS Severity
CVSS v3 Score 5.5
References
- https://access.redhat.com/errata/RHSA-2023:4720
- https://access.redhat.com/security/cve/CVE-2023-4065
- https://bugzilla.redhat.com/show_bug.cgi?id=2224630
- https://access.redhat.com/errata/RHSA-2023:4720
- https://access.redhat.com/security/cve/CVE-2023-4065
- https://bugzilla.redhat.com/show_bug.cgi?id=2224630
Products affected by CVE-2023-4065
-
cpe:2.3:a:redhat:jboss_a-mq:7
-
cpe:2.3:a:redhat:jboss_middleware:1
-
cpe:2.3:a:redhat:openshift_container_platform:4.11
-
cpe:2.3:a:redhat:openshift_container_platform:4.12
-
cpe:2.3:o:redhat:enterprise_linux:8.0