73 matches found
com.chutneytesting:chutney-kotlin-dsl (>=0.1.18 <=1.0.1), com.codbex.aion:codbex-aion-platform (>=0.5.6 <=0.5.7) +218 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-client (>=5.17.0 <=5.17.6)
org.apache.activemq:activemq-client MAVEN version =5.17.0, =0.1.18, =0.5.6, =0.5.6, =0.5.6, =0.3.0, =0.3.0, =0.5.3, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.4.0 and more Source cves: CVE-2025-27533 Source advisory: OSV:GHSA-WHXR-3P84-RF3C...
Exploit for Deserialization of Untrusted Data in Apache Activemq
Active MQ CVE-2023-46604 exploit This repository is a guide w...
com.chutneytesting:chutney-kotlin-dsl (>=0.1.18 <=1.0.1), com.codbex.aion:codbex-aion-platform (>=0.5.6 <=0.5.7) +211 more potentially affected by CVE-2023-46604 via org.apache.activemq:activemq-client (>=5.17.0 <=5.17.5)
org.apache.activemq:activemq-client MAVEN version =5.17.0, =0.1.18, =0.5.6, =0.5.6, =0.5.6, =0.3.0, =0.3.0, =0.5.3, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.4.0 and more Source cves: CVE-2023-46604 Source advisory: OSV:GHSA-CRG9-44H2-XW35...
be.yildiz-games:module-messaging-activemq (=1.0.14), ca.islandora.alpaca:islandora-alpaca-app (>=2.0.0 <=2.2.0) +379 more potentially affected by CVE-2023-46604 via org.apache.activemq:activemq-client (>=5.16.0 <=5.16.6)
org.apache.activemq:activemq-client MAVEN version =5.16.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =8.1.0.286, =1.3.0, =2.3.0, =2.3.0, =2.3.0, =1.6.0, =1.4.6, =0.1.10, =1.4.6, =2.2.0 and more Source cves: CVE-2023-46604 Source advisory: OSV:GHSA-CRG9-44H2-XW35...
com.chutneytesting:action-impl (>=2.2.1 <=2.5.1), com.chutneytesting:chutney-junit-engine (>=2.2.1 <=2.5.1) +88 more potentially affected by CVE-2023-46604 via org.apache.activemq:activemq-client (>=5.18.0 <=5.18.2)
org.apache.activemq:activemq-client MAVEN version =5.18.0, =2.2.1, =2.2.1, =2.2.2, =2.2.1, =0.4.4, =0.4.4, =RC0-0.19.12-2023-10-27, =RC0-0.19.12-2023-10-27, =RC0-0.19.12-2023-10-27, =RC0-0.19.12-2023-10-27, =3.0.0, =1.0.1, =1.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2023-46604 Source...
com.artnaseef:activemq-maven-plugin (=5.10.0), com.github.cchacin:cucumber-common-steps (>=0.0.2 <=0.1.8) +174 more potentially affected by CVE-2014-8110 via org.apache.activemq:activemq-client (=5.10.0)
org.apache.activemq:activemq-client MAVEN version =5.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.activemq:activemq-client and may be impacted: - com.artnaseef:activemq-maven-plugin =5.10.0 - com.github.cchacin:cucumber-common-steps...
com.artnaseef:activemq-maven-plugin (=5.10.0), com.github.cchacin:cucumber-common-steps (>=0.0.2 <=0.1.8) +174 more potentially affected by CVE-2014-3600 via org.apache.activemq:activemq-client (=5.10.0)
org.apache.activemq:activemq-client MAVEN version =5.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.activemq:activemq-client and may be impacted: - com.artnaseef:activemq-maven-plugin =5.10.0 - com.github.cchacin:cucumber-common-steps...
at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +273 more potentially affected by CVE-2015-1830 via org.apache.activemq:activemq-client (>=5.10.0 <=5.11.1)
org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2015-1830 Source advisory: OSV:GHSA-3V63-F83X-37X4...
at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +499 more potentially affected by CVE-2016-3088 via org.apache.activemq:activemq-client (>=5.10.0 <=5.13.5)
org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2016-3088 Source advisory: OSV:GHSA-RXQH-FC23-GXP2...
at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +452 more potentially affected by CVE-2016-0734 via org.apache.activemq:activemq-client (>=5.10.0 <=5.13.1)
org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2016-0734 Source advisory: OSV:GHSA-W525-W93J-RXGM...
com.hack23.cia:jms-broker (=2015.12.01), com.hack23.cia:service.component.agent.impl (=2015.12.01) +190 more potentially affected by CVE-2016-0782 via org.apache.activemq:activemq-client (>=5.12.0 <=5.12.2)
org.apache.activemq:activemq-client MAVEN version =5.12.0, =1.0.7, =1.0.7, =2.2.44, =2.2.94, =2.2.97, =2.2.97, =2.2.90, =2.2.96 and more Source cves: CVE-2016-0782 Source advisory: OSV:GHSA-8RCQ-P4GH-VMJ8...
at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +273 more potentially affected by CVE-2016-0782 via org.apache.activemq:activemq-client (>=5.10.0 <=5.11.3)
org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2016-0782 Source advisory: OSV:GHSA-8RCQ-P4GH-VMJ8...
com.cognifide.aet:aet-maven-plugin (>=2.0.0 <=2.1.6), com.cognifide.aet:cleaner (>=2.0.0 <=2.1.6) +159 more potentially affected by CVE-2016-0782 via org.apache.activemq:activemq-client (>=5.13.0 <=5.13.1)
org.apache.activemq:activemq-client MAVEN version =5.13.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =1.6, =1.6, =1.6, =1.0.0, =2015.12.20, =2015.12.20, =2015.12.20, =2016.2.7 and more Source cves: CVE-2016-0782 Source advisory: OSV:GHSA-8RCQ-P4GH-VMJ8...
at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +527 more potentially affected by CVE-2016-6810 via org.apache.activemq:activemq-client (>=5.10.0 <=5.14.1)
org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2016-6810 Source advisory: OSV:GHSA-5JG4-P78R-P5J3...
at.chrl:chrl-jms (=1.1.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +273 more potentially affected by CVE-2015-5254 via org.apache.activemq:activemq-client (>=5.10.0 <=5.11.2)
org.apache.activemq:activemq-client MAVEN version =5.10.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2015-5254 Source advisory: OSV:GHSA-Q9HR-3PG4-3JP4...
com.hack23.cia:jms-broker (=2015.12.01), com.hack23.cia:service.component.agent.impl (=2015.12.01) +169 more potentially affected by CVE-2015-5254 via org.apache.activemq:activemq-client (>=5.12.0 <=5.12.1)
org.apache.activemq:activemq-client MAVEN version =5.12.0, =1.0.7, =1.0.7, =2.2.44, =2.2.94, =2.2.97, =2.2.97, =2.2.90, =2.2.96 and more Source cves: CVE-2015-5254 Source advisory: OSV:GHSA-Q9HR-3PG4-3JP4...
Security Bulletin: CVE-2018-11775 TLS hostname verification when using the Apache ActiveMQ Client
Summary TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default. Vulnerability Details CVEID:...
Security Bulletin: Apache ActiveMQ Client used in IBM Jazz for Service Management could allow a remote attacker to conduct a man-in-the-middle attack (CVE-2018-11775)
Summary Apache ActiveMQ Client used in IBM Jazz for Service Management could allow a remote attacker to conduct a man-in-the-middle attack CVE-2018-11775 Vulnerability Details CVEID: CVE-2018-11775 DESCRIPTION: Apache ActiveMQ Client could allow a remote attacker to conduct a man-in-the-middle...
activemq: ActiveMQ Client Missing TLS Hostname Verification
TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default...
UBUNTU-CVE-2015-7559
It was found that the Apache ActiveMQ client before 5.14.5 exposed a remote shutdown command in the ActiveMQConnection class. An attacker logged into a compromised broker could use this flaw to achieve denial of service on a connected client...