First published: Mon Mar 08 2021(Updated: )
A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when provided in the AMQ Broker application logfile when using the jdbc persistence functionality
Affected Software | Affected Version | How to fix |
---|---|---|
Red Hat AMQ |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of REDHAT-BUG-1936629 is deemed critical due to the potential exposure of sensitive JDBC encrypted usernames and passwords.
To fix REDHAT-BUG-1936629, it is recommended to upgrade to the patched version of Red Hat AMQ Broker provided in the latest security advisories.
REDHAT-BUG-1936629 affects the Red Hat AMQ Broker, specifically the JDBC persistence functionality.
REDHAT-BUG-1936629 discloses JDBC encrypted usernames and passwords through the AMQ Broker application's logfile.
Currently, there is no specific workaround for REDHAT-BUG-1936629 provided, and updating to a secure version is the best course of action.