io.fabric8.fab.tests:fab-itests (=1.1.0.Beta3), io.quarkiverse.artemis:quarkus-test-artemis (>=3.12.0 <=3.12.1.CR1) +27 more potentially affected by CVE-2026-27446 via org.apache.artemis:artemis-server (>=2.50.0 <=2.51.0)

org.apache.artemis:artemis-server MAVEN version =2.50.0, =3.12.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.50.0, =2.51.0 and more Source cves: CVE-2026-27446 Source advisory: OSV:GHSA-FW88-PF9M-P947...

CVE-2007-2696

The JMS Server in BEA WebLogic Server 6.1 through SP7, 7.0 through SP6, and 8.1 through SP5 enforces security access policies on the front end, which allows remote attackers to access protected queues via direct requests to the JMS back-end server...

Design/Logic Flaw

The JMS Server in BEA WebLogic Server 6.1 through SP7, 7.0 through SP6, and 8.1 through SP5 enforces security access policies on the front end, which allows remote attackers to access protected queues via direct requests to the JMS back-end server...

CVE-2007-2696

The vulnerability CVE-2007-2696 affects BEA WebLogic Server JMS Server (versions 6.1 SP7 and earlier, 7.0 SP6 and earlier, 8.1 SP5 and earlier). The JMS Server’s front-end access policy enforcement can be bypassed, allowing remote attackers to access protected JMS queues by sending direct request...