What is CVE-2015-0223?

CVE-2015-0223 is a vulnerability in Apache Qpid, classified under CWE-264. Published 2015-02-02.

Is CVE-2015-0223 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Apache Qpid

CVE-2015-0223

Unspecified vulnerability in Apache Qpid 0.30 and earlier allows remote attackers to bypass access restrictions on qpidd via unknown vectors, related to 0-10 connection handling.

EPSS: 0.023 (85.0th percentile) — read the EPSS interpretation.

Affected products

Apache Qpid
N/a — versions n/a

Weakness classification (CWE)

CWE-264

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

RHBA-2016:1500 (x_refsource_REDHAT, vendor-advisory)
72319 (vdb-entry, x_refsource_BID)
20150126 CVE-2015-0223: anonymous access to qpidd cannot be prevented (mailing-list, x_refsource_BUGTRAQ)
secalert@redhat.com (x_refsource_MISC)

Frequently asked questions

What is CVE-2015-0223?: CVE-2015-0223 is a vulnerability in Apache Qpid, classified under CWE-264. Published 2015-02-02.
Is CVE-2015-0223 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.