CVE-2026-49877
HIGHApache ActiveMQ: Authenticated web users retain admin access by default in the Web Console
Title source: cnaExploitation Summary
EIP tracks 1 public exploit for CVE-2026-49877. PoCs published by HermesNA-1.
AI-analyzed exploit summary This repository contains an auto-generated stub module for CVE-2026-49877, an improper authorization vulnerability in Apache ActiveMQ's Web Console. The code includes placeholder logic for probing a target but lacks actual exploit implementation or technical details about the vulnerability mechanics.
Description
Improper Authorization vulnerability in Apache ActiveMQ. An authenticated low-privilege Web Console user by default can access /admin/* paths in the Web Console. The default Jetty settings incorrectly did not limit those paths to only admins. This issue affects Apache ActiveMQ: before 5.19.8, from 6.0.0 before 6.2.7. Users are recommended to upgrade to version 6.2.7 or 5.19.8, which fixes the issue.
Exploits (1)
This repository contains an auto-generated stub module for CVE-2026-49877, an improper authorization vulnerability in Apache ActiveMQ's Web Console. The code includes placeholder logic for probing a target but lacks actual exploit implementation or technical details about the vulnerability mechanics.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N