Eclipse Vert X Stomp
By the Year
In 2024 there have been 0 vulnerabilities in Eclipse Vert X Stomp . Last year Vert X Stomp had 1 security vulnerability published. Right now, Vert X Stomp is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 1 | 6.50 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Vert X Stomp vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Eclipse Vert X Stomp Security Vulnerabilities
Vert.x STOMP is a vert.x implementation of the STOMP specification that provides a STOMP server and client
CVE-2023-32081
6.5 - Medium
- May 12, 2023
Vert.x STOMP is a vert.x implementation of the STOMP specification that provides a STOMP server and client. From versions 3.1.0 until 3.9.16 and 4.0.0 until 4.4.2, a Vert.x STOMP server processes client STOMP frames without checking that the client send an initial CONNECT frame replied with a successful CONNECTED frame. The client can subscribe to a destination or publish message without prior authentication. Any Vert.x STOMP server configured with an authentication handler is impacted. The issue is patched in Vert.x 3.9.16 and 4.4.2. There are no trivial workarounds.
authentification
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Eclipse Vert X Stomp or by Eclipse? Click the Watch button to subscribe.