SECURITYTHE REGISTER
CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack
CISA has issued an emergency directive for federal agencies to patch a 13-year-old vulnerability in Apache ActiveMQ, which is currently being actively exploited. The flaw, recently added to the KEV list, has existed undetected for over a decade and requires immediate remediation within two weeks.