Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2023-33246

Good to know:

icon
icon

Date: May 24, 2023

For RocketMQ versions 5.1.0 and below, under certain conditions, there is a risk of remote command execution.  Several components of RocketMQ, including NameServer, Broker, and Controller, are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the update configuration function to execute commands as the system users that RocketMQ is running as. Additionally, an attacker can achieve the same effect by forging the RocketMQ protocol content.  To prevent these attacks, users are recommended to upgrade to version 5.1.1 or above for using RocketMQ 5.x or 4.9.6 or above for using RocketMQ 4.x .

Language: Java

Severity Score

Related Resources (8)

http://packetstormsecurity.com/files/173339/Apache-RocketMQ-5.1.0-Arbitrary-Code-Injection.html
https://github.com/apache/rocketmq
https://nvd.nist.gov/vuln/detail/CVE-2023-33246
https://github.com/apache/rocketmq/commit/c3ada731405c5990c36bf58d50b3e61965300703
https://github.com/apache/rocketmq/commit/9d411cf04a695e7a3f41036e8377b0aa544d754d
https://lists.apache.org/thread/1s8j2c8kogthtpv3060yddk03zq0pxyp
http://www.openwall.com/lists/oss-security/2023/07/12/1
https://www.mend.io/vulnerability-database/CVE-2023-33246

Severity Score

Weakness Type (CWE)

Code Injection

CWE-94

Top Fix

icon

Upgrade Version

Upgrade to version org.apache.rocketmq:rocketmq-broker:4.9.6,5.1.1, org.apache.rocketmq:rocketmq-controller:5.1.1, org.apache.rocketmq:rocketmq-namesrv:4.9.6,5.1.1

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

Do you need more information?

Contact Us