CISA warns of Apache ActiveMQ flaw now under active attack

CISA has added CVE-2026-34197, a high-severity Apache ActiveMQ vulnerability, to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the wild. The agency added the flaw on April 16, 2026, and set an April 30, 2026 remediation deadline for Federal Civilian Executive Branch agencies under Binding Operational Directive 22-01. The bug affects Apache ActiveMQ […] The post CISA warns of Apache ActiveMQ flaw now under active attack appeared first on VPN Central.