CISA flags Apache ActiveMQ flaw as actively exploited in attacks

CISA has issued an urgent warning that threat actors are actively exploiting a high-severity vulnerability in Apache ActiveMQ. The flaw, which went undetected for 13 years, was patched earlier this month but is now being targeted in ongoing attacks. This vulnerability poses significant risk to organizations running affected Apache ActiveMQ deployments. Immediate action is required: organizations should apply the latest security patches without delay and monitor for indicators of compromise. Given CISA's involvement and the active exploitation status, this vulnerability has been added to the Known Exploited Vulnerabilities catalog, requiring federal agencies to remediate within specified timeframes.

CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13 years. [...]

CISA has issued an urgent warning that threat actors are actively exploiting a high-severity vulnerability in Apache ActiveMQ. The flaw, which went undetected for 13 years, was patched earlier this month but is now being targeted in ongoing attacks. This vulnerability poses significant risk to organizations running affected Apache ActiveMQ deployments. Immediate action is required: organizations should apply the latest security patches without delay and monitor for indicators of compromise. Given CISA's involvement and the active exploitation status, this vulnerability has been added to the Known Exploited Vulnerabilities catalog, requiring federal agencies to remediate within specified timeframes. CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13 years. [...] CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13 years. [...]