CVE-2026-49157 | Apache ActiveMQ up to 5.19.6/6.2.5 Jolokia broker-management privilege escalation

Inserito da Angelo Barbosa | Giu 1, 2026 | CVE

A vulnerability was found in Apache ActiveMQ up to 5.19.6/6.2.5. It has been classified as problematic. This affects an unknown function of the component Jolokia broker-management. Performing a manipulation results in privilege escalation.

This vulnerability is reported as CVE-2026-49157. The attacker must have access to the local network to execute the attack. No exploit exists.

Upgrading the affected component is recommended.

CVE-2026-49157 | Apache ActiveMQ up to 5.19.6/6.2.5 Jolokia broker-management privilege escalation

Post correlati

CVE-2023-6865 | Mozilla Firefox up to 120 EncryptingOutputStream uninitialized pointer

CVE-2024-22238 | VMware Aria Operations for Networks prior 6.12 cross site scripting (VMSA-2024-0002)

CVE-2026-32052 | OpenClaw up to 2026.2.23 positional interpretation conflict (GHSA-6rcp-vxwf-3mfp)

CVE-2024-50354 | Consensys gnark up to 0.10.x resource consumption (GHSA-cph5-3pgr-c82g)