Apache RocketMQ is the United States Apache (Apache) Foundation of a lightweight data processing platform and messaging engine. A command execution vulnerability exists in Apache RocketMQ 5.1.0 and prior versions, which stems from an application failing to properly filter special elements of constructed snippets. An attacker can exploit the vulnerability to update the configuration function to execute commands as the system user.
CPE | Name | Operator | Version |
---|---|---|---|
apache rocketmq | le | 5.1.0 |