Active MQ 5.17.0 and cve-2016-1000027

Hi, We are using a docker container of ActiveMQ 5.17.0 and our vulnerability scanner found the library spring-web-5.3.16.jar which is vulnerable to cve-2016-127. Can you confirm/infirm if Active MQ is affected / whether it uses a Spring remoting endpoint? More details about this vulnerabi

Active MQ 5.17.0 and CVE-2022-22965

Hi, We are using a docker container of ActiveMQ 5.17.0 and our vulnerability scanner found the library spring-beans-5.3.16.jar which is vulnerable to CVE-2022-22965. Can you confirm/infirm if Active MQ is affected? More details about this vulnerability: A Spring MVC or Spring WebFlux applicati