V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsDocs
Back to catalog
BDU:2026-08456
BDU
HighConfirmedExploit available

Уязвимость компонента Jolokia веб-консоли программных продуктов Apache ActiveMQ связана с недостаточной проверкой вводимых данных. Эксплуат…

CVSS
8.1
High
EPSS
0.00
p0
Published
2026-01-01
Updated
2026-01-01
Description

Уязвимость компонента Jolokia веб-консоли программных продуктов Apache ActiveMQ связана с недостаточной проверкой вводимых данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код

Affected products
Apache software foundation Apache activemqApache software foundation Apache activemqApache software foundation Apache activemq allApache software foundation Apache activemq allApache software foundation Apache activemq brokerApache software foundation Apache activemq broker
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Timeline
2026-01-01
Published
2026-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: L
Low (L)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
CVE-2026-42588
github-poc · https://github.com/hnytgl/CVE-2026-42588
Enterprise
Affected software
ProductVendorStatus
apache activemqapache software foundationTracked
apache activemqapache software foundationTracked
apache activemq allapache software foundationTracked
apache activemq allapache software foundationTracked
apache activemq brokerapache software foundationTracked
apache activemq brokerapache software foundationTracked
Source databases
BDU
Related vulnerabilities
CVE-2026-42588