CVE-2016-3088
Apache ActiveMQ Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
98.5%
p100
KEV
YES
Feb 10, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
98.5%EPSS · 30 days98.5%
2026-06-302026-07-16
Product
Apache / ActiveMQ
Vulnerability
Apache ActiveMQ Improper Input Validation Vulnerability
Added to KEV
Feb 10, 2022
Remediate by
Aug 10, 2022
Known ransomware use
No
Summary description
The Fileserver web application in Apache ActiveMQ allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2016-3088