CVE-2025-54539P2CRITICALCVSS 9.8fixed in 2.4.02025-10-16
CVE-2025-54539 [CRITICAL] CWE-502 CVE-2025-54539: A Deserialization of Untrusted Data vulnerability exists in the Apache ActiveMQ NMS AMQP Client. Th
A Deserialization of Untrusted Data vulnerability exists in the Apache ActiveMQ NMS AMQP Client.
This issue affects all versions of Apache ActiveMQ NMS AMQP up to and including 2.3.0, when establishing connections to untrusted AMQP servers. Malicious servers could exploit unbounded deserialization logic present in the client to craft responses tha
nvd