Information Disclosure Vulnerability in Red Hat AMQ-Streams via Illegal Header Value

Information Disclosure Vulnerability in Red Hat AMQ-Streams via Illegal Header Value

CVE-2023-0833 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A flaw was found in Red Hat's AMQ-Streams, which ships a version of the OKHttp component with an information disclosure flaw via an exception triggered by a header containing an illegal value. This issue could allow an authenticated attacker to access information outside of their regular permissions.

Learn more about our Web Application Penetration Testing UK.