DEBIAN-CVE-2016-3088

DEBIAN-CVE-2016-3088 PUBLISHED CVSS 9.800000190734863 CRITICAL

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request.

Risk Scores

CVSS v3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:13	activemq	0, 0, 0
Debian:12	activemq	0, 0, 0
Debian:11	activemq	0, 0, 0

Timeline

Jun 1, 2016 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2016-3088 advisory

Open in Interactive Console →