Vulnerability Description
The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the update configuration function on the NameServer component to execute commands as the system users that RocketMQ is running as. It is recommended for users to upgrade their NameServer version to 5.1.2 or above for RocketMQ 5.x or 4.9.7 or above for RocketMQ 4.x to prevent these attacks.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Rocketmq | <= 4.9.6 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2023/07/12/1Mailing ListPatchThird Party Advisory
- https://lists.apache.org/thread/m614czxtpvlztd7mfgcs2xcsg36rdbncMailing ListPatchVendor Advisory
- http://www.openwall.com/lists/oss-security/2023/07/12/1Mailing ListPatchThird Party Advisory
- https://lists.apache.org/thread/m614czxtpvlztd7mfgcs2xcsg36rdbncMailing ListPatchVendor Advisory
FAQ
What is CVE-2023-37582?
CVE-2023-37582 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the ...
How severe is CVE-2023-37582?
CVE-2023-37582 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-37582?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Rocketmq.