Dossier
KEV list
Coverage of KEV list in the Nexus archive.
- CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack
CISA has issued an emergency directive for federal agencies to patch a 13-year-old vulnerability in Apache ActiveMQ, which is currently being actively exploited. The flaw, recently added to the KEV list, has existed undetected for over a decade and requires immediate remediation within two weeks.