Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-51127

An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.

Published

2024-11-04T18:15:05.113

Last Modified

2024-11-21T09:45:17.017

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo
Type: Secondary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	redhat	hornetq	≤ 2.4.9	Yes

References

http://hornetq.com Product ([email protected])
https://github.com/JAckLosingHeart/CWE-378/blob/main/CVE-2024-51127.md Exploit, Mitigation ([email protected])