| Vulnerability Name: | CVE-2020-13920 (CCN-188067) | ||||||||||||
| Assigned: | 2020-09-10 | ||||||||||||
| Published: | 2020-09-10 | ||||||||||||
| Updated: | 2021-07-21 | ||||||||||||
| Summary: | Apache ActiveMQ uses LocateRegistry.createRegistry() to create the JMX RMI registry and binds the server to the "jmxrmi" entry. It is possible to connect to the registry without authentication and call the rebind method to rebind jmxrmi to something else. If an attacker creates another server to proxy the original, and bound that, he effectively becomes a man in the middle and is able to intercept the credentials when an user connects. Upgrade to Apache ActiveMQ 5.15.12. | ||||||||||||
| CVSS v3 Severity: | 5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N) 5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
| ||||||||||||
| Vulnerability Type: | CWE-287 | ||||||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||||||
| References: | Source: CCN Type: Apache Web site Apache ActiveMQ Source: MISC Type: Vendor Advisory http://activemq.apache.org/security-advisories.data/CVE-2020-13920-announcement.txt Source: MITRE Type: CNA CVE-2020-13920 Source: XF Type: UNKNOWN apache-cve202013920-mitm(188067) Source: MLIST Type: Mailing List, Patch, Vendor Advisory [activemq-commits] 20210208 [activemq-website] branch master updated: Publish CVE-2020-13947 Source: MLIST Type: Mailing List, Patch, Vendor Advisory [activemq-commits] 20210127 [activemq-website] branch master updated: Publish CVE-2021-26117 Source: MLIST Type: Mailing List, Third Party Advisory [debian-lts-announce] 20201007 [SECURITY] [DLA 2400-1] activemq security update Source: CCN Type: oss-sec Mailing List, Thu, 10 Sep 2020 07:27:04 +0200 [CVE-2020-13920] ActiveMQ JMX vulenarable to MITM attack Source: CCN Type: IBM Security Bulletin 6348698 (Operations Analytics Predictive Insights) Vulnerabilities in Apache ActiveMQ affect IBM Operations Analytics Predictive Insights (CVE-2020-11998, CVE-2020-13920) Source: CCN Type: IBM Security Bulletin 6398750 (Sterling Secure Proxy) Vulnerability in Apache ActiveMQ affects IBM Sterling Secure Proxy (CVE-2020-13920) Source: CCN Type: IBM Security Bulletin 6404722 (Control Center) Apache ActiveMQ Vulnerability Affects IBM Control Center (CVE-2020-13920) Source: CCN Type: IBM Security Bulletin 6955033 (Security Directory Integrator) IBM Security Directory Integrator is affected by multiple security vulnerabilities Source: CCN Type: IBM Security Bulletin 7001693 (Security Directory Suite VA) IBM Security Directory Suite is vulnerable to multiple issues Source: MISC Type: Third Party Advisory https://www.oracle.com/security-alerts/cpuoct2020.html | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration 3: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||