Attacks aimed at vulnerable Apache RocketMQ servers underway

9 January 2024

BleepingComputer reports that internet-exposed Apache RocketMQ servers vulnerable to the critical remote code execution flaws, tracked as CVE-2023-33246 and CVE-2023-37582 the latter of which stemmed from the incomplete fix of the former were discovered by The ShadowServer Foundation to have been scanned by hundreds of hosts around the world daily for attempted exploitation. Exploitation of CVE-2023-33246 could enable command execution through NameServer’s update configuration function in the event of address exposure and the lack of permission checks, according to Apache RocketMQ Project Management Committee member and Alibaba Research and Development Engineer Rongtong Jin.

Source: SC Magazine

Date:

9 January 2024

Categorie(s):

NEWS

Tag(s):

Apache, Attacks, IT, News, Threat Intelligence

Security budgets are growing, but so is vendor sprawl27 April 2024
The Top 5 Benefits Of Using Outsourcing Services27 April 2024
How To Repair PST Files In Under 5 Minutes Like A Pro27 April 2024
How To Secure Your Snapchat Account27 April 2024
How To Prevent Xiaomi From Spying On You And Stealing Your Data27 April 2024