Remote Code Execution (RCE)
Apache ActiveMQ is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper input validation in the Jolokia JMX-HTTP bridge /api/jolokia/, where attacker-controlled input reaches BrokerService.addNetworkConnectorString and triggers the VM transport's brokerConfig parameter...