Filter

Versions

5.0.0
21
5.1.0
17
5.2.0
17
5.3.0
17
5.3.1
15
5.3.2
14
5.4.0
14
5.4.1
14
5.5.0
14
5.5.1
14
5.7.0
14
5.4.2
13
5.6.0
13
5.8.0
10
5.10.0
9
5.4.3
9
5.9.0
8
5.9.1
8
4.0
6
4.0-m4
6
4.0-rc2
6
4.0.1
6
4.0.2
6
4.1.0
6
4.1.1
6
5.10.1
4
5.10.2
4
5.11.0
4
5.11.1
4
1.1
3
1.2
3
1.3
3
1.4
3
1.5
3
2.0
3
2.1
3
3.0
3
3.1
3
3.2
3
3.2.1
3
3.2.2
3
5.11.2
3
5.12.0
3
5.12.1
3
5.16.0
3
5.1
2
5.10
2
5.11
2
5.12.2
2
5.13.0
2
5.14
2
5.15.0
2
5.15.9
2
5.16
2
5.17
2
5.17.0
2
5.18
2
5.2
2
6.0
2
6.1
2
4.1.2
1
5.11.3
1
5.13.1
1
5.13.3
1
5.14.0
1
5.15.11
1
5.15.12
1
5.15.16
1
5.15.2
1
5.15.4
1
5.15.5
1
5.15.8
1
5.16.7
1
5.17.6
1
5.18.0
1
5.18.3
1
5.4-snapshot
1
6.0.0
1

Apache ActiveMQ 6.1End of life

First published (updated )
latest-version-apache-activemq-6.1

Apache ActiveMQ 6.1End of life

First published (updated )
EOL-apache-activemq-6.1

Apache ActiveMQActiveMQ Content Pack: Cleartext Exposure of Credentials

medium
6
EPSS
0.04%
First published (updated )
CVE-2024-8689

maven/org.apache.activemq:apache-activemqApache ActiveMQ: Jolokia and REST API were not secured with default configuration

high
8.8
First published (updated )
CVE-2024-32114

CVE-2024-32114: Apache ActiveMQ: Jolokia and REST API were not secured with default configuration

First published (updated )
https://seclists.org/oss-sec/2024/q2/197

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

BleepingComputerMagnet Goblin hackers use 1-day flaws to drop custom Linux malware

First published (updated )
News
BleepingComputer

BleepingComputerApache OFBiz RCE flaw exploited to find vulnerable Confluence servers

First published (updated )
News
BleepingComputer

CVE-2022-41678: Apache ActiveMQ: Deserialization vulnerability on Jolokia that allows authenticated users to perform RCE

First published (updated )
https://seclists.org/oss-sec/2023/q4/241

redhat/activemqApache ActiveMQ: Insufficient API restrictions on Jolokia allow authenticated users to perform RCE

high
8.8
First published (updated )
CVE-2022-41678

BleepingComputerKinsing malware exploits Apache ActiveMQ RCE to plant rootkits

First published (updated )
News
BleepingComputer

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache ActiveMQ 6.0Reached end of life

First published (updated )
latest-version-apache-activemq-6.0

Apache ActiveMQ 6.0Reached end of life

First published (updated )
EOL-apache-activemq-6.0

CVE-2023-46604: Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

First published (updated )
https://seclists.org/oss-sec/2023/q4/192

Apache ActiveMQApache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack

critical
10
Exploited
First published (updated )
CVE-2023-46604

Apache ActiveMQ 5.18End of life

First published (updated )
latest-version-apache-activemq-5.18

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache ActiveMQ 5.18End of life

First published (updated )
EOL-apache-activemq-5.18

Apache ActiveMQ 5.17Reached end of life

First published (updated )
latest-version-apache-activemq-5.17

Apache ActiveMQ 5.17Reached end of life

First published (updated )
EOL-apache-activemq-5.17

maven/org.apache.activemq:activemq-parentXSS

medium
6.1
First published (updated )
CVE-2020-13947

Oracle Retail Xstore Office Cloud ServiceRemote Code Execution in XStream

critical
9.3
First published (updated )
CVE-2020-26217

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle FLEXCUBE Private BankingCode Injection

critical
9.8
First published (updated )
CVE-2020-11998

Oracle FLEXCUBE Private BankingLast updated 24 July 2024

medium
5.9
First published (updated )
CVE-2020-13920

maven/org.apache.activemq:activemq-parentActiveMQ: LDAP-Authentication does not verify passwords on servers with anonymous bind

high
8.1
First published (updated )
CVE-2021-26117

Apache ActiveMQ 5.16Reached end of life

First published (updated )
latest-version-apache-activemq-5.16

Apache ActiveMQ 5.16Reached end of life

First published (updated )
EOL-apache-activemq-5.16

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

oracle communications element managerXSS

medium
6.1
First published (updated )
CVE-2020-1941

Apache ActiveMQInput Validation

medium
6.5
First published (updated )
CVE-2015-7559

Apache ZooKeeperA flaw was found in Apache ZooKeeper. A lack of permission checks while retrieving ACLs allows unsal…

high
7.5
First published (updated )
CVE-2019-0201

Eclipse JettyXSS

medium
6.1
First published (updated )
CVE-2019-10241

Oracle Communications Diameter Signaling RouterInput Validation, Code Injection

high
7.5
First published (updated )
CVE-2019-0222

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203