Lucene search
+L

27 matches found

osv
osv
added 11 hours ago11 views

ROOT-APP-MAVEN-CVE-2026-34197 CVE-2026-34197 in io.root.org.apache.activemq:activemq-broker - Patched by Root

Root has patched CVE-2026-34197 in the io.root.org.apache.activemq:activemq-broker package for Root:Maven. Multiple fixed versions available...

8.8CVSS7.1AI score0.96666EPSS
Exploits14
hpe
hpe
added 2026/06/24 12:0 a.m.6 views

HPESBNW05073 rev.1 - HPE Telco Unified Correlation and Automation (UCA), Multiple Vulnerabilities

Potential Security Impact: Local: Input Validation; Remote: Input Validation SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Unified Correlation Analyzer UCA Older than 4.4.10 - Fixed in version UCA 4.4.10 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

8.8CVSS6.8AI score0.96666EPSS
Exploits14
githubexploit
githubexploit
added 2026/06/06 12:39 p.m.79 views

Exploit for Improper Input Validation in Apache Activemq

CVE-2026-34197 - Apache ActiveMQ RCE via Jolokia 1. Overvi...

8.8CVSS6.4AI score0.96666EPSS
Exploits14
rapid7blog
rapid7blog
added 2026/06/05 5:1 p.m.16 views

Weekly Metasploit Update: Apache ActiveMQ RCE, Gogs Rebase RCE, and Windows Kernel Pointer Enum

When Open Source is a bit too Open Several fun modules landed this week, including an Apache RCE, Windows Kernel pointer collection, and Gogs RCE via naming. Leading off is Gogs' RCE that allows an attacker to execute commands by naming their branch --exec and requesting a rebase. Another useful...

8.8CVSS7.5AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/06/01 10:29 a.m.7 views

be.yildiz-games:module-messaging-activemq (=2.0.0), com.codbex.atlas:codbex-atlas-application (>=1.1.0 <=2.110.0) +111 more potentially affected by CVE-2026-34197 +1 more via org.apache.activemq:activemq-broker (>=6.0.0 <=6.2.5)

org.apache.activemq:activemq-broker MAVEN version =6.0.0, =1.1.0, =2.55.0, =1.0.5, =1.1.0, =1.1.0, =1.1.0, =0.2.0, =1.1.0, =0.2.2, =1.4.0, =2.3.0 and more Source cves: CVE-2026-34197, CVE-2026-45505 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151885...

8.8CVSS7AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/06/01 10:29 a.m.7 views

at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +1035 more potentially affected by CVE-2026-34197 +1 more via org.apache.activemq:activemq-broker (>=5.10.0 <=5.19.6)

org.apache.activemq:activemq-broker MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2026-34197, CVE-2026-45505 Source advisory:...

8.8CVSS5.9AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/06/01 10:29 a.m.10 views

com.espertech:esperio-springjms (=9.0.0), org.apache.activemq.tooling:activemq-maven-plugin (>=6.0.0 <=6.2.5) +5 more potentially affected by CVE-2026-34197 +1 more via org.apache.activemq:activemq-all (>=6.0.0 <=6.2.5)

org.apache.activemq:activemq-all MAVEN version =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.2.5 Source cves: CVE-2026-34197, CVE-2026-45505 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151886...

8.8CVSS7AI score0.96666EPSS
Exploits14
githubexploit
githubexploit
added 2026/05/18 2:36 p.m.88 views

Exploit for Improper Input Validation in Apache Activemq

CVE-2026-34197 ActiveMQ Classic Security Detection Tool This...

8.8CVSS6.6AI score0.96666EPSS
Exploits14
vulncheck_kev
vulncheck_kev
added 2026/05/07 12:0 a.m.47 views

VulnCheck KEV: CVE-2026-40466

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. An authenticated attacker may bypass the fix in CVE-2026-34197 by adding a connector using an HTTP Discovery transport...

8.8CVSS6.4AI score0.04783EPSS
In wildExploits14References19
ibm
ibm
added 2026/05/04 4:6 p.m.9 views

Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in activemq-all (CVE-2026-34197)

Summary IBM Sterling Control Center is affected by a vulnerability CVE-2026-34197 reported for activemq-all-5.19.0.jar. Vulnerability Details CVEID:CVE-2026-34197 DESCRIPTION: Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broke...

8.8CVSS7.9AI score0.96666EPSS
Exploits14Affected Software1
vulnersosv
vulnersosv
added 2026/04/24 12:30 p.m.8 views

org.apache.axis2:axis2-integration (=1.4), org.apache.camel:camel-example-cxf (>=1.2.0 <=1.3.0) +3 more potentially affected by CVE-2026-34197 +1 more via org.apache.activemq:apache-activemq (>=4.1.1 <=5.0.0)

org.apache.activemq:apache-activemq MAVEN version =4.1.1, =1.2.0, =1.1.0, =1.3.0 - org.apache.camel:camel-example-spring =1.2.0 - org.apache.camel:camel-example-spring-xquery =1.3.0 Source cves: CVE-2026-34197, CVE-2026-40466 Source advisory: OSV:GHSA-W3W2-MPP5-92GM...

8.8CVSS6.6AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/04/24 12:30 p.m.10 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-34197 +1 more via org.apache.activemq:activemq-all (>=4.1.2 <=5.19.5)

org.apache.activemq:activemq-all MAVEN version =4.1.2, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-34197, CVE-2026-40466 Source advisory: OSV:GHSA-W3W2-MPP5-92GM...

8.8CVSS6.6AI score0.96666EPSS
Exploits14
cvelist
cvelist
added 2026/04/24 10:15 a.m.32 views

CVE-2026-40466 Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Possible bypass of CVE-2026-34197 via HTTP discovery second-stage URI

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. An authenticated attacker may bypass the fix in CVE-2026-34197 by adding a connector using an HTTP Discovery transport...

0.04783EPSS
Exploits14References1
cgr
cgr
added 2026/04/17 7:17 p.m.10 views

CVE-2026-34197 vulnerabilities

Vulnerabilities for packages: apache-activemq, geoserver, apache-activemq-fips...

8.8CVSS6.8AI score0.96666EPSS
Exploits14
githubexploit
githubexploit
added 2026/04/14 8:44 p.m.140 views

Exploit for CVE-2026-34197

CVE-2026-34197 — Apache ActiveMQ Classic RCE via Jolokia API...

8.8CVSS8.1AI score0.96666EPSS
Exploits14
nessus
nessus
added 2026/04/10 12:0 a.m.35 views

Apache ActiveMQ < 5.19.4 / 6.x < 6.2.3 Improper Input Validation Code Injection

The version of Apache ActiveMQ running on the remote host is prior to 5.19.4 or 6.x prior to 6.2.3. It is, therefore, affected by an improper input validation and code injection vulnerability: - ActiveMQ Classic exposes the Jolokia JMX-HTTP bridge at /api/jolokia/ with a default access policy tha...

8.8CVSS7.2AI score0.96666EPSS
Exploits14References2
githubexploit
githubexploit
added 2026/04/08 9:18 a.m.172 views

Exploit for CVE-2026-34197

CVE-2026-34197 CVE-2026-34197 activemq PoC PoC for the Activ...

8.8CVSS6AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/04/07 9:31 a.m.8 views

be.yildiz-games:module-messaging-activemq (=2.0.0), com.codbex.atlas:codbex-atlas-application (>=1.1.0 <=2.110.0) +111 more potentially affected by CVE-2026-34197 via org.apache.activemq:activemq-broker (>=6.0.0 <=6.2.2)

org.apache.activemq:activemq-broker MAVEN version =6.0.0, =1.1.0, =2.55.0, =1.0.5, =1.1.0, =1.1.0, =1.1.0, =0.2.0, =1.1.0, =0.2.2, =1.4.0, =2.1.0 and more Source cves: CVE-2026-34197 Source advisory: OSV:GHSA-RXPJ-7QVF-XV32...

8.8CVSS7AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/04/07 9:31 a.m.10 views

at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +1035 more potentially affected by CVE-2026-34197 via org.apache.activemq:activemq-broker (>=5.10.0 <=5.19.3)

org.apache.activemq:activemq-broker MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2026-34197 Source advisory:...

8.8CVSS6.6AI score0.96666EPSS
Exploits14
vulnersosv
vulnersosv
added 2026/04/07 9:31 a.m.10 views

com.espertech:esperio-springjms (=9.0.0), org.apache.activemq.tooling:activemq-maven-plugin (>=6.0.0 <=6.2.2) +5 more potentially affected by CVE-2026-34197 via org.apache.activemq:activemq-all (>=6.0.0 <=6.2.2)

org.apache.activemq:activemq-all MAVEN version =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.2.2 Source cves: CVE-2026-34197 Source advisory: OSV:GHSA-RXPJ-7QVF-XV32...

8.8CVSS6.6AI score0.96666EPSS
Exploits14
Rows per page
Query Builder