Password Disclosure Vulnerability in Red Hat AMQ Broker Operator

Password Disclosure Vulnerability in Red Hat AMQ Broker Operator

CVE-2023-4065 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in ActiveMQArtemisAddress CR, shown in plain text in the Operator Log. This flaw allows an authenticated local attacker to access information outside of their permissions.

Learn more about our Web Application Penetration Testing UK.