https://feed.craftedsignal.io/actors/lockbit/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioWed, 25 Feb 2026 09:22:01 +0000https://feed.craftedsignal.io/briefs/2026-02-activemq-rce/Wed, 25 Feb 2026 09:22:01 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-02-activemq-rce/CVE-2023-46604 is a remote code execution vulnerability affecting Apache ActiveMQ that is actively exploited in the wild by ransomware operators, allowing remote attackers to execute arbitrary shell commands.<p>CVE-2023-46604 is a critical remote code execution (RCE) vulnerability affecting Apache ActiveMQ message brokers. This vulnerability allows a remote attacker with network access to the ActiveMQ broker to execute arbitrary shell commands by manipulating serialized class types within the OpenWire protocol. The vulnerability affects Apache ActiveMQ versions 5.16.0 before 5.16.7, 5.17.0 before 5.17.6, 5.18.0 before 5.18.3, and before 5.15.16, as well as corresponding versions of the Legacy OpenWire…</p> criticalthreatactivemqrcecve-2023-46604ransomware