pkg:Maven/org.apache.activemq:activemq-openwire-legacy

2 total CVEsCRITICAL1HIGH1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL10.0CVE-2023-46604⚠ KEVApache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack
    >= 5.8.0, < 5.15.16
  • HIGH7.5CVE-2025-27533Apache ActiveMQ: Unchecked buffer length can cause excessive memory allocation
    from 0, < 5.16.8
Maven/org.apache.activemq:activemq-openwire-legacy — 2 CVEs · VulnScope