2 matches found
CVE-2021-26117
CVE-2021-26117 describes an LDAP authentication weakness in the optional ActiveMQ LDAP login module where anonymous access can bypass password verification. Connected sources confirm affected lines: Apache ActiveMQ Artemis prior to 2.16.0 and Apache ActiveMQ prior to 5.16.1 and 5.15.14. Debian/Ub...
CVE-2015-7559
CVE-2015-7559: Apache ActiveMQ client before 5.14.5 exposes a remote shutdown command in ActiveMQConnection, enabling a remote authenticated attacker to cause denial of service on a connected client. Affected software is the Apache ActiveMQ client (pre-5.14.5). Remediation: upgrade to 5.14.5 or l...