Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
EclipseOpenmq

2 matches found

CVE
CVEadded 2026/03/05 4:27 p.m.12 views

CVE-2026-24457

CVE-2026-24457: OpenMQ unsafe parsing of configuration allows a remote attacker to read arbitrary files on the MQ Broker server, potentially reading host OS files. In some scenarios, RCE could be achieved. Metrics indicate CVSS v3.1 base score 9.1 (CRITICAL) with NETWORK attack vector, LOW attack...

9.8CVSS6AI score0.00616EPSS
CVE
CVEadded 2026/03/03 9:18 a.m.11 views

CVE-2026-22886

OpenMQ exposes a TCP-based management service (imqbrokerd) that ships with a default admin/admin account and does not enforce a mandatory password change on first use. This enables remote authentication as administrator and full control of administrative features if the service is reachable. CVSS...

9.8CVSS6AI score0.00402EPSS