CVE-2026-40046
published 2026-04-09CVE-2026-40046: Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE-2025-66168: MQTT control packet…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT.
The fix for "CVE-2025-66168: MQTT control packet remaining length field is not properly validated" was only applied to 5.19.2 (and future 5.19.x) releases but was missed for all 6.0.0+ versions.
This issue affects Apache ActiveMQ: from 6.0.0 before 6.2.4; Apache ActiveMQ All: from 6.0.0 before 6.2.4; Apache ActiveMQ MQTT: from 6.0.0 before 6.2.4.
Users are recommended to upgrade to version 6.2.4 or a 5.19.x version starting with 5.19.2 or later (currently latest is 5.19.5), which fixes the issue.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | activemq | < 5.19.2 | 5.19.2 |
| apache | activemq | — | — |
| apache | activemq | 6.0.0 – 6.1.8 | — |
| apache_software_foundation | apache_activemq | >= 6.0.0 < 6.2.4 | 6.2.4 |
| apache_software_foundation | apache_activemq_all | >= 6.0.0 < 6.2.4 | 6.2.4 |
| apache_software_foundation | apache_activemq_mqtt | >= 6.0.0 < 6.2.4 | 6.2.4 |
| debian | activemq | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ghsa8.8HIGH