VYPR
High severity7.5NVD Advisory· Published Mar 7, 2018· Updated Jun 17, 2026

CVE-2017-12174

CVE-2017-12174

Description

It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.hornetq:hornetq-serverMaven
< 2.4.0.Final2.4.0.Final
org.apache.activemq:artemis-nativeMaven
< 2.4.02.4.0

Affected products

3

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.