Lucene search
+L

94 matches found

GithubExploit
GithubExploit
added 2026/05/18 2:36 p.m.93 views

Exploit for Improper Input Validation in Apache Activemq

CVE-2026-34197 ActiveMQ Classic Security Detection Tool This...

8.8CVSS6.6AI score0.96666EPSS
Exploits14
CVE
CVE
added 2026/04/24 10:16 a.m.28 views

CVE-2026-41044

The CVE describes an authenticated RCE/Code Injection in Apache ActiveMQ (Classic) and related brokers via the admin web console. An attacker can craft a malicious broker name (bypassing validation) that embeds an xbean binding, which a VM transport can later load through a DestinationView MBean ...

8.8CVSS6.5AI score0.0098EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2026/04/24 10:16 a.m.2 views

CVE-2026-41044 Apache ActiveMQ, Apache ActiveMQ Broker, Apache ActiveMQ All: Authenticated user can perform RCE via DestinationView MBean exposed by Jolokia

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ, Apache ActiveMQ Broker, Apache ActiveMQ All. An authenticated attacker can use the admin web console page to construct a malicious broker name that bypasses name validation to...

8.8CVSS7.8AI score0.0098EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.9 views

Apache ActiveMQ 安全漏洞

Apache ActiveMQ Broker is an open source message broker and integration pattern server . A security vulnerability exists in Apache ActiveMQ Broker. The vulnerability stems from the Jolokia JMX-HTTP bridge default policy that allows exec operations on MBeans, which can be exploited by an attacker ...

8.8CVSS7AI score0.96666EPSS
Exploits14References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-4126

Malware in sbrugna...

7.5CVSS6.4AI score0.01484EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-2313

Malware in sbrugna...

2.1CVSS6.4AI score0.0021EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-1154

Malware in sbrugna...

7.6CVSS6.4AI score0.00907EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-0429

Malware in sbrugna...

6.4CVSS6.4AI score0.01752EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/05 7:2 a.m.16 views

CVE-2024-32656

Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account on the system. This vulnerability arises from Ant Media...

7.8CVSS8.3AI score0.00654EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/10/14 6:30 p.m.22 views

Apache ActiveMQ Artemis: Authenticated users could perform RCE via Jolokia MBeans

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could...

8.8CVSS6.7AI score0.16539EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2024/10/14 6:30 p.m.14 views

GHSA-443J-GRXV-2PGV Apache ActiveMQ Artemis: Authenticated users could perform RCE via Jolokia MBeans

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could...

8.8CVSS8.6AI score0.16539EPSS
Exploits0References6
NVD
NVD
added 2024/10/14 4:15 p.m.31 views

CVE-2023-50780

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could...

8.8CVSS0.16539EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/10/14 4:3 p.m.17 views

CVE-2023-50780 Apache ActiveMQ Artemis: Authenticated users could perform RCE via Jolokia MBeans

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could...

6.7AI score0.16539EPSS
Exploits0References1
CVE
CVE
added 2024/10/14 4:3 p.m.70 views

CVE-2023-50780

Apache ActiveMQ Artemis suffers a vulnerability where diagnostic MBeans (including the Log4J2 MBean) are exposed through the Jolokia endpoint, accessible to authenticated users. Before version 2.29.0 this exposure could allow an authenticated attacker to write arbitrary files to the filesystem an...

8.8CVSS8.6AI score0.16539EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/10/14 4:3 p.m.92 views

CVE-2023-50780 Apache ActiveMQ Artemis: Authenticated users could perform RCE via Jolokia MBeans

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could...

0.16539EPSS
Exploits0References1
OSV
OSV
added 2024/10/14 4:3 p.m.35 views

CVE-2023-50780 Apache ActiveMQ Artemis: Authenticated users could perform RCE via Jolokia MBeans

Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which are also exposed through the authenticated Jolokia endpoint. Before version 2.29.0, this also included the Log4J2 MBean. This MBean is not meant for exposure to non-administrative users. This could...

8.8CVSS7.2AI score0.16539EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/14 12:0 a.m.6 views

Apache ActiveMQ Artemis 安全漏洞

Apache ActiveMQ Artemis is a high-performance open source messaging agent from the Apache USA Foundation. A security vulnerability exists in Apache ActiveMQ Artemis versions prior to 2.29.0, which stems from allowing access to diagnostic information and controls via MBean, which allows an attacke...

8.8CVSS8.8AI score0.16539EPSS
Exploits0References3
Veracode
Veracode
added 2024/04/23 6:54 a.m.20 views

Privilege Escalation

Ant Media Server is vulnerable to Privilege Escalation. The vulnerability is caused by running Java Management Extensions JMX with authentication disabled on localhost on port 5599. This allows unprivileged users to connect locally and leverage MLet Bean within JMX to load a remote MBean from an...

7.8CVSS8.2AI score0.00244EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/04/22 10:16 p.m.89 views

CVE-2024-32656

CVE-2024-32656 affects Ant Media Server (versions 2.6.0–2.8.2). The issue arises because JMX is enabled and unauthenticated on localhost:5599/TCP, allowing an unprivileged user to exploit the MLet bean to load a remote MBean and execute code in the antmedia process, effectively escalating to root...

7.8CVSS8.1AI score0.00244EPSS
Exploits0References2
OSV
OSV
added 2024/04/22 10:16 p.m.26 views

CVE-2024-32656 Ant Media Server vulnerable to local privilege escalation

Ant Media Server is live streaming engine software. A local privilege escalation vulnerability in present in versions 2.6.0 through 2.8.2 allows any unprivileged operating system user account to escalate privileges to the root user account on the system. This vulnerability arises from Ant Media...

7.8CVSS8.1AI score0.00244EPSS
Exploits0References4
Rows per page
Query Builder