{"vulnerability": "CVE-2026-40914", "sightings": [{"uuid": "7ae97e70-2355-4eb8-9493-d933785f8917", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40914", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmtzzmt3ah2e", "content": "ARTEMIS-5996: CVE-2026-40914: Apache Artemis, Apache ActiveMQ Artemis: Address routing-type can be updated by STOMP protocol user without the createAddress permission", "creation_timestamp": "2026-05-27T17:32:33.908232Z"}, {"uuid": "8b201276-7ce3-4e22-bbe9-356d92f8a240", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-40914", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mmyhafj65s2p", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-40914\n\nA vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or...", "creation_timestamp": "2026-05-29T11:39:38.498815Z"}]}