CVE-2025-66168 | Apache ActiveMQ prior 5.19.2/6.1.9/6.2.1 MQTT Control Packet integer overflow

Inserito da Angelo Barbosa | Mar 3, 2026 | CVE

A vulnerability was found in Apache ActiveMQ. It has been classified as problematic. This issue affects some unknown processing of the component MQTT Control Packet Handler. The manipulation leads to integer overflow.

This vulnerability is referenced as CVE-2025-66168. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.

CVE-2025-66168 | Apache ActiveMQ prior 5.19.2/6.1.9/6.2.1 MQTT Control Packet integer overflow

Post correlati

CVE-2025-67653 | Advantech WebAccess/SCADA 9.2.1 path traversal

CVE-2024-8132 | D-Link DNS-1550-04 up to 20240814 HTTP POST Request /cgi-bin/webdav_mgr.cgi webdav_mgr f_path command injection (SAP10383)

CVE-2022-49008 | Linux Kernel up to 6.0.11 can327_feed_frame_to_netdev allocation of resources (797b1d9fc0e1/8fa452cfafed)

CVE-2020-9210 | Huawei Myna 9.0.1.11(H100SP8C00) integrity check (huawei-sa-20210106-01-myna)