CVE-2017-15709: Information Exposure

February 13, 2018 (updated October 22, 2019)

When using the OpenWire protocol in ActiveMQ it was found that certain system details (such as the OS and kernel version) are exposed as plain text.

References

nvd.nist.gov/vuln/detail/CVE-2017-15709

Detect and mitigate CVE-2017-15709 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →