July 26, 2024
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – CVE-2020-16875 – Microsoft Exchange Server Remote Code Execution Vulnerability
September 13, 2020Rewterz Threat Advisory – CVE-2020-1351 – AVEVA Enterprise Data Management Web SQL injection
September 14, 2020Rewterz Threat Advisory – CVE-2020-16875 – Microsoft Exchange Server Remote Code Execution Vulnerability
September 13, 2020Rewterz Threat Advisory – CVE-2020-1351 – AVEVA Enterprise Data Management Web SQL injection
September 14, 2020
Severity
Medium
Analysis Summary
Apache ActiveMQ is vulnerable to a man-in-the-middle attack, caused by improper authentication validation when connecting to the JMX RMI registry. By creating another server to proxy the original, an attacker could exploit this vulnerability to launch a man-in-the-middle attack and gain access to the communication channel between endpoints to obtain user credentials or further compromise the system.
Impact
Obtain Information
Affected Vendors
Apache
Affected Products
Apache ActiveMQ 5.15.11
Remediation
Upgrade to the latest version of Apache ActiveMQ (5.15.12 or later), available from the Apache Web site.