VulnerableCode Package Details - pkg:maven/org.apache.activemq/artemis-server@5.15.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.apache.activemq/artemis-server@5.15.0

purl	pkg:maven/org.apache.activemq/artemis-server@5.15.0
Tags	Ghost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-6fqa-fzda-x3ej Aliases: CVE-2021-26117 GHSA-9mgm-gcq8-86wq	Improper Authentication in Apache ActiveMQ and Apache Artemis The optional ActiveMQ LDAP login module can be configured to use anonymous access to the LDAP server. In this case, for Apache ActiveMQ Artemis prior to version 2.16.0 and Apache ActiveMQ prior to versions 5.16.1 and 5.15.14, the anonymous context is used to verify a valid users password in error, resulting in no check on the password.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-02T12:37:53.766879+00:00	GitLab Importer	Affected by	VCID-6fqa-fzda-x3ej	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.activemq/artemis-server/CVE-2021-26117.yml	38.0.0