QwikSec

Security Database

CVE

CWE

Training

CVE-2018-8030

Published: Jun 19, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 7.0.0-7.0.4 when AMQP protocols 0-8, 0-9 or 0-91 are used to publish messages with size greater than allowed maximum message size limit (100MB by default). The broker crashes due to the defect. AMQP protocols 0-10 and 1.0 are not affected.

Vendor	Product	Versions
Apache Software Foundation	Apache Qpid Broker-J	affected `7.0.0, 7.0.1, 7.0.2, 7.0.3`

References

vdb-entry

x_refsource_SECTRACK

[qpid-users] 20180618 [SECURITY] [CVE-2018-8030] Apache Qpid Broker-J Denial of Service Vulnerability when AMQP 0-8...0-91 messages

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.