Every CVE whose affected-product data names Eclipse Openmq, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2026-22886 — CVSS 9.8 (critical): OpenMQ exposes a TCP-based management service (imqbrokerd) that by default requires authentication. However, the product ships with a…
CVE-2026-24457 — CVSS 9.1 (critical): An unsafe parsing of OpenMQ's configuration, allows a remote attacker to read arbitrary files from a MQ Broker's server. A full…