Lucene search
K

76 matches found

EUVD
EUVD
added yesterday4 views

EUVD-2026-40285

Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. An attacker that has access to publish or modify entries in LDAP that match the configured searchBase and searchFilter can instantiate denied transports inside the broker JVM. This can be used...

7.5CVSS5.7AI score
Exploits0References1
EUVD
EUVD
added yesterday4 views

EUVD-2026-40278

Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. An unauthenticated client that opens a STOMP NIO connection can send header bytes that never terminate which makes the broker buffer them without limit, exhausting the JVM hea...

7.5CVSS5.9AI score
Exploits0References1
Information Security Automation
Information Security Automation
added 5 days ago4 views

June Linux Patch Wednesday

June Linux Patch Wednesday. A total of 1,888 vulnerabilities 324 in the Linux kernel, and a whopping 728 in Chromium ❗️. For comparison, there were 1,638 vulnerabilities in May. The increase isn't as dramatic as it was from April to May, but it's still a new record. One of the vulnerabilities has...

8.8CVSS7AI score0.01849EPSS
Exploits18
GithubExploit
GithubExploit
added 2026/06/06 5:17 a.m.66 views

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604-RCE Python implementation of Apache ActiveMQ...

10CVSS7.3AI score0.99654EPSS
Exploits31
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.8 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-42253 via org.apache.activemq:activemq-all (>=5.0.0 <=5.19.6)

org.apache.activemq:activemq-all MAVEN version =5.0.0, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-42253 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151925...

6.1CVSS5.4AI score0.01107EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.5 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-46605 via org.apache.activemq:activemq-all (>=5.0.0 <=5.19.6)

org.apache.activemq:activemq-all MAVEN version =5.0.0, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-46605 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151900...

4.3CVSS5.4AI score0.00335EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.6 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-34197 +1 more via org.apache.activemq:activemq-all (>=5.0.0 <=5.19.6)

org.apache.activemq:activemq-all MAVEN version =5.0.0, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-34197, CVE-2026-45505 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151886...

8.8CVSS6.5AI score0.9619EPSS
Exploits12
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.4 views

org.apache.camel:camel-activemq (=1.0.0), org.apache.camel:camel-example-jms-file (=1.0.0) +1 more potentially affected by CVE-2026-49157 via org.apache.activemq:apache-activemq (=6.2.5)

org.apache.activemq:apache-activemq MAVEN version =6.2.5 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.activemq:apache-activemq and may be impacted: - org.apache.camel:camel-activemq =1.0.0 - org.apache.camel:camel-example-jms-file =1.0.0 ...

8.8CVSS5.4AI score0.00424EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.7 views

com.espertech:esperio-springjms (=9.0.0), io.fabric8.examples:fabric-activemq-demo (>=1.1.0.Beta1 <=1.2.0.redhat-133) +21 more potentially affected by CVE-2026-49157 via org.apache.activemq:activemq-all (>=6.0.0 <=6.2.5)

org.apache.activemq:activemq-all MAVEN version =6.0.0, =1.1.0.Beta1, =1.1.0.Beta1, =1.1.0.Beta1, =4.2.9.hyte-4296, =4.2.9.hyte-4296, =4.2.9.hyte-4296, =4.2.9.hyte-4296, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.2.5 and more Source cves: CVE-2026-49157 Source advisory:...

8.8CVSS5.4AI score0.00424EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.7 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-49157 via org.apache.activemq:activemq-all (>=5.0.0 <=5.19.6)

org.apache.activemq:activemq-all MAVEN version =5.0.0, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-49157 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151889...

8.8CVSS5.4AI score0.00424EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/06/01 10:29 a.m.6 views

org.apache.axis2:axis2-integration (=1.4), org.apache.camel:camel-example-cxf (=1.3.0) +2 more potentially affected by CVE-2026-49157 via org.apache.activemq:apache-activemq (=5.0.0)

org.apache.activemq:apache-activemq MAVEN version =5.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.activemq:apache-activemq and may be impacted: - org.apache.axis2:axis2-integration =1.4 - org.apache.camel:camel-example-cxf =1.3.0 -...

8.8CVSS5.4AI score0.00424EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/06/01 10:26 a.m.7 views

be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-49270 via org.apache.activemq:activemq-all (>=5.0.0 <=5.19.6)

org.apache.activemq:activemq-all MAVEN version =5.0.0, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-49270 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151888...

5.9CVSS5.4AI score0.00328EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/01 7:23 a.m.11 views

CVE-2026-42588

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic exposes the Jolokia JMX-HTTP bridge at /api/jolokia/ on the web console. The default Jolokia access policy...

6.4AI score0.00546EPSS
Exploits1References2Affected Software3
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.8 views

Apache ActiveMQ 安全漏洞

Apache ActiveMQ is an open-source messaging middleware developed by the Apache Foundation in the United States. It supports Java Message Service, clustering, Spring Framework, etc. There is a security vulnerability in Apache ActiveMQ. This vulnerability stems from the default access policy of the...

8.1CVSS6.2AI score0.00546EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2026/05/08 5:39 a.m.98 views

Exploit for Improper Input Validation in Apache Activemq

CVE-2026-34197 — Apache ActiveMQ Classic Jolokia RCE Lab O...

8.8CVSS6.7AI score0.9619EPSS
Exploits12
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 4:7 p.m.6 views

Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in activemq-all (CVE-2025-66168)

Summary IBM Sterling Control Center is affected by a vulnerability CVE-2025-66168 reported for activemq-all-5.19.0.jar. Vulnerability Details CVEID:CVE-2025-66168 DESCRIPTION: WARNING: Users of 6.x should upgrade to 6.2.4 or later as the fix was missed in previous 6.x releases. See the following...

8.8CVSS6.1AI score0.0078EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 4:6 p.m.6 views

Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in activemq-all (CVE-2026-34197)

Summary IBM Sterling Control Center is affected by a vulnerability CVE-2026-34197 reported for activemq-all-5.19.0.jar. Vulnerability Details CVEID:CVE-2026-34197 DESCRIPTION: Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broke...

8.8CVSS7.9AI score0.9619EPSS
Exploits12Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 4:4 p.m.7 views

Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in activemq-all (CVE-2026-39304)

Summary IBM Sterling Control Center is affected by a vulnerability CVE-2026-39304 reported for activemq-all-5.19.0.jar. Vulnerability Details CVEID:CVE-2026-39304 DESCRIPTION: Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ...

7.5CVSS5.8AI score0.00896EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/04/28 8:37 a.m.4 views

BIT-ACTIVEMQ-2026-40466 Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Possible bypass of CVE-2026-34197 via HTTP discovery second-stage URI

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. An authenticated attacker may bypass the fix in CVE-2026-34197 by adding a connector using an HTTP Discovery transport...

8.8CVSS8.6AI score0.9619EPSS
Exploits12References2
OSV
OSV
added 2026/04/24 12:30 p.m.4 views

GHSA-MR6M-XJ7V-3CV3 Apache ActiveMQ Vulnerable to Code Injection

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ, Apache ActiveMQ Broker, Apache ActiveMQ All. An authenticated attacker can use the admin web console page to construct a malicious broker name that bypasses name validation to...

8.8CVSS6.4AI score0.0098EPSS
Exploits0References4
Rows per page
Query Builder