Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activemq vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2017-5168
An issue exists in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Path Traversal vulnerabilities have been identified. The flaws exist within the ActiveMQ Broker service that is installed as part of the product. By issuing specific HTTP requests, if a user...
Hanwha-security Smart Security Manager
5
CVSSv2
CVE-2016-9008
IBM UrbanCode Deploy could allow a malicious user to access the Agent Relay ActiveMQ Broker JMX interface and run plugins on the agent.
Ibm Urbancode Deploy 6.0.1.10
Ibm Urbancode Deploy 6.0.1.11
Ibm Urbancode Deploy 6.0.1.12
Ibm Urbancode Deploy 6.0.1.13
Ibm Urbancode Deploy 6.1.0.4
Ibm Urbancode Deploy 6.1.1
Ibm Urbancode Deploy 6.1.1.1
Ibm Urbancode Deploy 6.1.1.2
Ibm Urbancode Deploy 6.2.0.1
Ibm Urbancode Deploy 6.2.0.2
Ibm Urbancode Deploy 6.2.1
Ibm Urbancode Deploy 6.2.1.1
Ibm Urbancode Deploy 6.0.1.5
Ibm Urbancode Deploy 6.0.1.6
Ibm Urbancode Deploy 6.0.1.7
Ibm Urbancode Deploy 6.0.1.8
Ibm Urbancode Deploy 6.1.1.7
Ibm Urbancode Deploy 6.1.1.8
Ibm Urbancode Deploy 6.1.2
Ibm Urbancode Deploy 6.1.3
Ibm Urbancode Deploy 6.0
Ibm Urbancode Deploy 6.0.1.1
7.5
CVSSv2
CVE-2016-3088
The Fileserver web application in Apache ActiveMQ 5.x prior to 5.14.0 allows remote malicious users to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request.
Apache Activemq
2 EDB exploits
8 Github repositories
7.5
CVSSv2
CVE-2015-5254
Apache ActiveMQ 5.x prior to 5.13.0 does not restrict the classes that can be serialized in the broker, which allows remote malicious users to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object.
Redhat Openshift 2.0
Apache Activemq 5.3.0
Apache Activemq 5.11.1
Apache Activemq 5.8.0
Apache Activemq 5.4.3
Apache Activemq 5.4.0
Apache Activemq 5.5.1
Apache Activemq 5.12.0
Apache Activemq 5.4.1
Apache Activemq 5.9.0
Apache Activemq 5.11.2
Apache Activemq 5.11.0
Apache Activemq 5.3.1
Apache Activemq 5.2.0
Apache Activemq 5.7.0
Apache Activemq 5.0.0
Apache Activemq 5.12.1
Apache Activemq 5.10.1
Apache Activemq 5.10.0
Apache Activemq 5.1.0
Apache Activemq 5.5.0
Apache Activemq 5.3.2
4 Github repositories
5
CVSSv2
CVE-2015-6524
The LDAPLoginModule implementation in the Java Authentication and Authorization Service (JAAS) in Apache ActiveMQ 5.x prior to 5.10.1 allows wildcard operators in usernames, which allows remote malicious users to obtain credentials via a brute force attack. NOTE: this identifier ...
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Apache Activemq 5.0.0
Apache Activemq 5.4.0
Apache Activemq 5.4.2
Apache Activemq 5.7.0
Apache Activemq 5.9.0
Apache Activemq 5.4.3
Apache Activemq 5.5.0
Apache Activemq 5.5.1
Apache Activemq 5.6.0
Apache Activemq 5.10.0
Apache Activemq 5.2.0
Apache Activemq 5.3.0
Apache Activemq 5.3.1
Apache Activemq 5.1.0
Apache Activemq 5.3.2
Apache Activemq 5.4.1
Apache Activemq 5.8.0
Apache Activemq 5.9.1
5
CVSSv2
CVE-2015-1830
Directory traversal vulnerability in the fileserver upload/download functionality for blob messages in Apache ActiveMQ 5.x prior to 5.11.2 for Windows allows remote malicious users to create JSP files in arbitrary directories via unspecified vectors.
Apache Activemq 5.0.0
Apache Activemq 5.1.0
Apache Activemq 5.2.0
Apache Activemq 5.3.0
Apache Activemq 5.3.1
Apache Activemq 5.3.2
Apache Activemq 5.4.0
Apache Activemq 5.4.1
Apache Activemq 5.4.2
Apache Activemq 5.4.3
Apache Activemq 5.5.0
Apache Activemq 5.5.1
Apache Activemq 5.6.0
Apache Activemq 5.7.0
Apache Activemq 5.8.0
Apache Activemq 5.9.0
Apache Activemq 5.9.1
Apache Activemq 5.10.0
Apache Activemq 5.10.1
Apache Activemq 5.10.2
Apache Activemq 5.11.0
Apache Activemq 5.11.1
2 EDB exploits
1 Github repository
5
CVSSv2
CVE-2014-3576
The processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ prior to 5.11.0 allows remote malicious users to cause a denial of service (shutdown) via a shutdown command.
Apache Activemq
Oracle Business Intelligence Publisher 12.2.1.0.0
Oracle Fusion Middleware 11.1.1.7.4
Oracle Fusion Middleware 9.0
Oracle Fusion Middleware 12.1.3.0.0
Oracle Fusion Middleware 8.1
10
CVSSv2
CVE-2015-3435
Samsung Security Manager (SSM) prior to 1.31 allows remote malicious users to execute arbitrary code by uploading a file with an HTTP (1) PUT or (2) MOVE request.
Samsung Samsung Security Manager
8.5
CVSSv2
CVE-2015-1499
The ActiveMQ Broker in Samsung Security Manager (SSM) prior to 1.31 allows remote malicious users to delete arbitrary files, and consequently cause a denial of service, via a DELETE request.
Samsung Samsung Security Manager
4.3
CVSSv2
CVE-2014-8110
Multiple cross-site scripting (XSS) vulnerabilities in the web based administration console in Apache ActiveMQ 5.x prior to 5.10.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Apache Activemq 5.3.0
Apache Activemq 5.8.0
Apache Activemq 5.4.3
Apache Activemq 5.4.0
Apache Activemq 5.5.1
Apache Activemq 5.4.1
Apache Activemq 5.9.0
Apache Activemq 5.3.1
Apache Activemq 5.2.0
Apache Activemq 5.7.0
Apache Activemq 5.0.0
Apache Activemq 5.10.0
Apache Activemq 5.1.0
Apache Activemq 5.5.0
Apache Activemq 5.3.2
Apache Activemq 5.9.1
Apache Activemq 5.6.0
Apache Activemq 5.4.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »