Improper Authentication Affecting org.apache.activemq:activemq-core package, versions [5.0.0,5.10.1)

  • Attack Complexity


Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • snyk-id


  • published

    25 Aug 2015

  • disclosed

    24 Aug 2015

  • credit

    Georgi Geshev, Arun Babu Neelicattu

How to fix?

Upgrade org.apache.activemq:activemq-core to version 5.10.1 or higher.


org.apache.activemq:activemq-core is a core package for ActiveMQ Message Broker and Client implementations.

Note: org.apache.activemq:activemq-core is no longer maintained and has been replaced with activemq-client and activemq-broker.

Affected versions of this package are vulnerable to Improper Authentication. None