CVE-2020-13947

Cross-site Scripting in maven/org.apache.activemq/activemq-jaas

Identifier

CVE-2020-13947

Package Slug

maven/org.apache.activemq/activemq-jaas

Vulnerability

Cross-site Scripting

Description

An instance of a cross-site scripting vulnerability was identified to be present in the web based administration console on the message.jsp page of Apache ActiveMQ.

Affected Versions

All versions before 5.15.14, all versions starting from 5.16.0 before 5.16.1

Solution

Upgrade to versions 5.15.14, 5.16.1 or above.

Last Modified

2021-02-15

source