Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-27427— Apache ActiveMQ Artemis: Address routing-type can be updated by user without the createAddress permission

EPSS 0.31% · P54
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-27427

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Apache ActiveMQ Artemis: Address routing-type can be updated by user without the createAddress permission
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability exists in Apache ActiveMQ Artemis whereby a user with the createDurableQueue or createNonDurableQueue permission on an address can augment the routing-type supported by that address even if said user doesn't have the createAddress permission for that particular address. When combined with the send permission and automatic queue creation a user could successfully send a message with a routing-type not supported by the address when that message should actually be rejected on the basis that the user doesn't have permission to change the routing-type of the address. This issue affects Apache ActiveMQ Artemis from 2.0.0 through 2.39.0. Users are recommended to upgrade to version 2.40.0 which fixes the issue.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apache ActiveMQ Artemis 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apache ActiveMQ Artemis是美国阿帕奇(Apache)基金会的一个高性能的开源消息代理。 Apache ActiveMQ Artemis 2.0.0版本至2.39.0版本存在安全漏洞,该漏洞源于具有createDurableQueue或createNonDurableQueue权限的用户可以修改地址的路由类型,可能导致消息被错误地路由。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Apache Software FoundationApache ActiveMQ Artemis 2.0.0 ~ 2.39.0 -

II. Public POCs for CVE-2025-27427

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2025-27427

登录查看更多情报信息。

Same Patch Batch · Apache Software Foundation · 2025-04-01 · 6 CVEs total

CVE-2025-30676Apache OFBiz: Stored XSS Vulnerability
CVE-2025-30177Apache Camel: Camel-Undertow Message Header Injection via Improper Filtering
CVE-2024-56325Apache Pinot: Authentication bypass issue. If the path does not contain / and contain . au
CVE-2025-29868Apache Answer: Using externally referenced images can leak user privacy.
CVE-2025-30065Apache Parquet Java: Arbitrary code execution in the parquet-avro module when reading an A

IV. Related Vulnerabilities

Same product: Apache ActiveMQ Artemis
Same vendor: Apache Software Foundation
Same weakness: CWE-863

V. Comments for CVE-2025-27427

No comments yet

Leave a comment