CVE-2026-34197

This repository contains a functional exploit for CVE-2026-34197, targeting Apache ActiveMQ via Jolokia MBean manipulation to achieve remote code execution (RCE). The exploit leverages a VM transport with a malicious Spring XML payload served over HTTP to execute arbitrary commands on the target system.

This repository contains a Java-based tool for detecting and exploiting multiple Apache ActiveMQ vulnerabilities, including CVE-2026-34197. It includes functional exploit code for deserialization attacks and other vulnerabilities, with a GUI for ease of use.

This repository contains a functional exploit for CVE-2026-34197, targeting Apache ActiveMQ's Jolokia API to achieve remote code execution (RCE) via malicious Spring XML configuration. The exploit leverages the `addNetworkConnector` operation to force ActiveMQ to parse a crafted XML payload, executing system commands through `MethodInvokingFactoryBean`.

This repository contains a Python script designed to detect Apache ActiveMQ instances vulnerable to CVE-2026-34197 by checking for exposed Jolokia API endpoints and version information. It does not include exploit code but provides detailed version checks and authentication testing.

This PoC exploits CVE-2026-34197 by leveraging Jolokia API to add a malicious network connector in Apache ActiveMQ, forcing the parsing of an external XML configuration to achieve RCE. The exploit targets versions 6.0.0-6.1.1 and includes cleanup steps to remove residual connectors.

This repository contains a functional exploit for CVE-2026-34197, a critical RCE vulnerability in Apache ActiveMQ via the Jolokia API. The exploit leverages the addNetworkConnector MBean method to trigger remote Spring XML injection, leading to arbitrary command execution.

This repository contains a functional exploit for CVE-2026-34197, targeting Apache ActiveMQ via the Jolokia API to achieve remote code execution (RCE). The exploit leverages the addNetworkConnector operation to force the broker to download and execute a malicious Spring XML configuration file.

This repository contains a functional exploit for CVE-2026-34197, an RCE vulnerability in Apache ActiveMQ Classic via the Jolokia API. The exploit leverages the `addNetworkConnector` MBean operation to force the broker to download and execute a malicious Spring XML configuration file, leading to arbitrary command execution.

This repository provides a detailed technical analysis of CVE-2026-34197, an authenticated RCE vulnerability in Apache ActiveMQ via Jolokia MBeans. It includes root cause analysis, affected versions, mitigation steps, and detection ideas.