CVE-2026-34197β€”Apache ActiveMQ Improper Input Validation Vulnerability

PUBLISHEDvulnerability record
2026-04-16 Β· last modified April 17, 2026

Metadata

CVE ID:
CVE-2026-34197
Project:
Apache
Product:
ActiveMQ
Date Added:
2026-04-16
Due Date:
2026-04-30
Last Updated:
April 17, 2026

Vulnerability Name

Apache ActiveMQ Improper Input Validation Vulnerability

Description

Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

Related News Articles

Related Weaknesses