Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Apache ActiveMQApache ActiveMQ, Apache ActiveMQ Broker, Apache ActiveMQ All: Authenticated user can perform RCE via DestinationView MBean exposed by Jolokia

Risk 83
Severity
8.8
First published (updated )
CVE-2026-41044

Apache ActiveMQ BrokerApache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Possible bypass of CVE-2026-34197 via HTTP discovery second-stage URI

Risk 83
Severity
8.8
First published (updated )
CVE-2026-40466

maven/org.apache.activemq:apache-activemqApache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Incorrect handling of TLSv1.3 KeyUpdate can be exploited to cause DoS via OOM

Risk 46
Severity
7.5
First published (updated )
CVE-2026-39304

Apache ActiveMQApache ActiveMQ Improper Input Validation Vulnerability

Risk 95
Severity
8.8
Exploited
Trending
3 Months
First published (updated )
CVE-2026-34197

Apache ActiveMQApache ActiveMQ, Apache ActiveMQ All Module, Apache ActiveMQ MQTT Module: MQTT control packet remaining length field is not properly validated

Risk 84
Severity
8.8
First published (updated )
CVE-2025-66168
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.apache.activemq:apache-activemqApache ActiveMQ: Jolokia and REST API were not secured with default configuration

Risk 83
Severity
8.8
First published (updated )
CVE-2024-32114

redhat/activemqApache ActiveMQ: Insufficient API restrictions on Jolokia allow authenticated users to perform RCE

Risk 85
Severity
8.8
First published (updated )
CVE-2022-41678

Oracle Communications Unified Inventory ManagementXStream can cause a Denial of Service

Risk 45
Severity
7.5
First published (updated )
CVE-2021-21341

Oracle Communications Unified Inventory ManagementA Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host

Risk 51
Severity
8.6
First published (updated )
CVE-2021-21349

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights

Risk 45
Severity
7.5
First published (updated )
CVE-2021-21343
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Communications Unified Inventory ManagementXStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos)

Risk 46
Severity
7.8
First published (updated )
CVE-2021-21348

maven/org.apache.activemq:activemq-parentActiveMQ: LDAP-Authentication does not verify passwords on servers with anonymous bind

Risk 79
Severity
8.1
First published (updated )
CVE-2021-26117

Oracle Communications Diameter Signaling RouterInput Validation, Code Injection

Risk 46
Severity
7.5
First published (updated )
CVE-2019-0222

ORACLE FLEXCUBE Private BankingLast updated 24 July 2024

Risk 59
Severity
7.4
First published (updated )
CVE-2018-11775

Apache ActiveMQInput Validation

Risk 67
Severity
7.5
First published (updated )
CVE-2015-6524
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache ActiveMQApache ActiveMQ could allow a remote authenticated attacker to bypass security restrictions, caused …

Risk 53
Severity
7.5
First published (updated )
CVE-2014-3612

Oracle Fusion MiddlewareOS Command Injection

Risk 45
Severity
7.5
First published (updated )
CVE-2014-3576

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203