Apache · Apache Activemq Artemis · CVE-2022-35278
**Name of the Vulnerable Software and Affected Versions**
Apache ActiveMQ Artemis versions prior to 2.24.0
**Description**
An issue exists where an attacker could display malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue.
**Recommendations**
For versions prior to 2.24.0, update to version 2.24.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of HTML in address or queue names to minimize the risk of exploitation.