Apache RocketMQ is the United States Apache (Apache) Foundation of a lightweight data processing platform and messaging engine. Apache RocketMQ suffers from a code injection vulnerability that originates from an extranet leak of the NameServer address and lack of privilege authentication, which can be exploited by an attacker to cause remote command execution of the NameServer component.
CPE | Name | Operator | Version |
---|---|---|---|
apache rocketmq >=5.0.0, | le | 5.1.1 | |
apache rocketmq | le | 4.9.6 |