CVE-2026-40046

CWE-190Integer Overflow7 documents7 sources
Severity
7.5HIGH
No vector
EPSS
0.0%
top 88.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apache Software Foundation Apache ActivemqApache Software Foundation Apache Activemq ALLApache Software Foundation Apache Activemq Mqtt
Timeline
PublishedApr 9

Description

Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE-2025-66168: MQTT control packet remaining length field is not properly validated" was only applied to 5.19.2 (and future 5.19.x) releases but was missed for all 6.0.0+ versions. This issue affects Apache ActiveMQ: from 6.0.0 before 6.2.4; Apache ActiveMQ All: from 6.0.0 before 6.2.4; Apache ActiveMQ MQTT: from 6.0.0 before 6.2.4. Users are recommended to upgrade to ve

Affected Packages6 packages

Mavenorg.apache.activemq:activemq-mqtt6.0.06.2.4
Mavenorg.apache.activemq:activemq-all6.0.06.2.4

🔴Vulnerability Details

3
CVEList
Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT: Missing fix for CVE-2025-66168: MQTT control packet remaining length field is not properly validated2026-04-09
GHSA
GHSA-xvqc-pp94-fmpx: Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT2026-04-09
GHSA
Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT vulnerable to Integer Overflow or Wraparound2026-04-09

📋Vendor Advisories

2
Red Hat
org.apache.activemq/apache-activemq: org.apache.activemq/activemq-all: org.apache.activemq/activemq-mqtt: MQTT control packet remaining length field is not properly validated (missing fix for CVE-20252026-04-09
Debian
CVE-2026-40046: activemq2026

💬Community

1
Bugzilla
CVE-2026-40046 org.apache.activemq/apache-activemq: org.apache.activemq/activemq-all: org.apache.activemq/activemq-mqtt: MQTT control packet remaining length field is not properly validated (missing f2026-04-09