CVE-2026-46605 in ActiveMQinformation

Résumé

par MITRE • 01/06/2026

Incomplete authorization by Apache ActiveMQ server before versions v6.2.6 and v5.19.7 allows authenticated connections to remove existing destinations with proper permissions.

This issue affects Apache ActiveMQ Broker: before 5.19.7, from 6.0.0 before 6.2.6; Apache ActiveMQ All: before 5.19.7, from 6.0.0 before 6.2.6; Apache ActiveMQ: before 5.19.7, from 6.0.0 before 6.2.6.

Users are recommended to upgrade to version v6.2.6 or v5.19.7, which fixes the issue.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgation

01/06/2026

Modérer

accepté

Entrée

VDB-367616

CPE

prêt

CWE

CWE-285 (confirmé)

CVSS

6.3 (VulDB)

EPSS

0.00058

KEV

non

Activités

très faible

Secteur

Hostingprovider, Hospital, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-46605
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-46605
CVE Details	https://www.cvedetails.com/cve/CVE-2026-46605/

◂ Précédent Aperçu Suivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!