Apache ActiveMQ Client 5.x < 5.15.6 TLS Hostname Verification Weakness
Medium Nessus Plugin ID 117483
SynopsisA web application running on the remote host is affected by an man-in-the-middle vulnerability.
DescriptionThe version of Apache ActiveMQ running on the remote host is 5.x prior to 5.15.6. It is, therefore, affected by a flaw related to TLS hostname verification and ActiveMQ Client that allows man-in-the-middle attacks.
SolutionUpgrade to Apache ActiveMQ version 5.15.6 or later.