From 9f9bfc811939ae1a2ccf9f43808921c2cf96912d Mon Sep 17 00:00:00 2001 From: ZodiacLyu Date: Wed, 15 Mar 2023 08:51:07 +0000 Subject: [PATCH 1/5] =?UTF-8?q?=E6=96=B0=E5=BB=BA=20apache-activemq?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- cve/apache-activemq/.keep | 0 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 cve/apache-activemq/.keep diff --git a/cve/apache-activemq/.keep b/cve/apache-activemq/.keep new file mode 100644 index 00000000..e69de29b -- Gitee From 57fb1764f6e6761043375cd3c0d430274913ea8e Mon Sep 17 00:00:00 2001 From: ZodiacLyu Date: Wed, 15 Mar 2023 09:01:08 +0000 Subject: [PATCH 2/5] =?UTF-8?q?=E6=96=B0=E5=BB=BA=20CVE-2022-35278?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- cve/apache-activemq/CVE-2022-35278/.keep | 0 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 cve/apache-activemq/CVE-2022-35278/.keep diff --git a/cve/apache-activemq/CVE-2022-35278/.keep b/cve/apache-activemq/CVE-2022-35278/.keep new file mode 100644 index 00000000..e69de29b -- Gitee From 77f75a7da1217ce2b536958464a9826544907dc9 Mon Sep 17 00:00:00 2001 From: ZodiacLyu Date: Wed, 15 Mar 2023 09:01:22 +0000 Subject: [PATCH 3/5] =?UTF-8?q?=E5=88=A0=E9=99=A4=E6=96=87=E4=BB=B6=20cve/?= =?UTF-8?q?apache-activemq/.keep?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- cve/apache-activemq/.keep | 0 1 file changed, 0 insertions(+), 0 deletions(-) delete mode 100644 cve/apache-activemq/.keep diff --git a/cve/apache-activemq/.keep b/cve/apache-activemq/.keep deleted file mode 100644 index e69de29b..00000000 -- Gitee From 2c21572410204740eb634348480c0c1be96b40d6 Mon Sep 17 00:00:00 2001 From: ZodiacLyu Date: Wed, 15 Mar 2023 09:15:16 +0000 Subject: [PATCH 4/5] add cve/apache-activemq/CVE-2022-35278/CVE-2022-35278.yaml. Signed-off-by: ZodiacLyu --- .../CVE-2022-35278/CVE-2022-35278.yaml | 21 +++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 cve/apache-activemq/CVE-2022-35278/CVE-2022-35278.yaml diff --git a/cve/apache-activemq/CVE-2022-35278/CVE-2022-35278.yaml b/cve/apache-activemq/CVE-2022-35278/CVE-2022-35278.yaml new file mode 100644 index 00000000..fe61a346 --- /dev/null +++ b/cve/apache-activemq/CVE-2022-35278/CVE-2022-35278.yaml @@ -0,0 +1,21 @@ +id: CVE-2022-35278 +source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35278 +info: + name: Apache ActiveMQ Artemis + severity: medium + description: | + In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue. + scope-of-influence: + Apache ActiveMQ Artemis version <= 2.24.0 + reference: + - CONFIRM:https://security.netapp.com/advisory/ntap-20221209-0005/ + - MISC:https://lists.apache.org/thread/bh6y81wtotg75337bpvxcjy436zfgf3n + - URL:https://lists.apache.org/thread/bh6y81wtotg75337bpvxcjy436zfgf3n + classification: + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N + cvss-score: 6.1 + cve-id: CVE-2022-35278 + cwe-id: CWE-79, CWE-80 + cnvd-id: None + kve-id: None + tags: cve2022, web \ No newline at end of file -- Gitee From 735da6182e360e6eef4124aa5803d0559c26b2f9 Mon Sep 17 00:00:00 2001 From: ZodiacLyu Date: Wed, 15 Mar 2023 09:15:33 +0000 Subject: [PATCH 5/5] =?UTF-8?q?=E5=88=A0=E9=99=A4=E6=96=87=E4=BB=B6=20cve/?= =?UTF-8?q?apache-activemq/CVE-2022-35278/.keep?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- cve/apache-activemq/CVE-2022-35278/.keep | 0 1 file changed, 0 insertions(+), 0 deletions(-) delete mode 100644 cve/apache-activemq/CVE-2022-35278/.keep diff --git a/cve/apache-activemq/CVE-2022-35278/.keep b/cve/apache-activemq/CVE-2022-35278/.keep deleted file mode 100644 index e69de29b..00000000 -- Gitee