CVE-2016-3088 - Apache ActiveMQ Improper Input Validation Vulnerability
Project:Apache
Product:ActiveMQ
Date Added:2022-02-10Due Date:2022-08-10
Vulnerability Name
Apache ActiveMQ Improper Input Validation Vulnerability
Description
The Fileserver web application in Apache ActiveMQ allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2016-3088