Lucene search
K

7 matches found

Circl
Circl
added 2023/07/15 10:35 a.m.8 views

CVE-2023-37582

creationtimestamp| type| source ---|---|--- 2023-07-15 10:35:02+00:00| published-proof-of-concept| https://t.me/proxybar/1626 2023-07-15 14:45:28+00:00| published-proof-of-concept| https://t.me/crackcodes/3898 2023-07-15 14:46:28+00:00| published-proof-of-concept|...

9.8CVSS7.3AI score0.8993EPSS
Exploits1References11
GithubExploit
GithubExploit
added 2023/07/14 12:22 p.m.228 views

Exploit for Code Injection in Apache Rocketmq

CVE-2023-37582EXPLOIT Apache RocketMQ Arbitrary File Write Vu...

9.8CVSS9.5AI score0.96604EPSS
Exploits11
vulnersOsv
vulnersOsv
added 2023/07/12 12:31 p.m.4 views

org.apache.rocketmq:rocketmq-dashboard (=2.0.0), org.apache.rocketmq:rocketmq-test (>=5.0.0 <=5.1.1) potentially affected by CVE-2023-37582 via org.apache.rocketmq:rocketmq-namesrv (>=5.0.0 <=5.1.1)

org.apache.rocketmq:rocketmq-namesrv MAVEN version =5.0.0, =5.0.0, =5.1.1 Source cves: CVE-2023-37582 Source advisory: OSV:GHSA-GPQ8-963W-8QC9...

9.8CVSS7.2AI score0.8993EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/07/12 12:31 p.m.4 views

cn.chendahai:rocketmq-console-alarm (=1.0.3), com.webank.defibus:defibus-namesrv (>=1.0.0 <=1.0.1) +10 more potentially affected by CVE-2023-37582 via org.apache.rocketmq:rocketmq-namesrv (>=4.0.0-incubating <=4.9.6)

org.apache.rocketmq:rocketmq-namesrv MAVEN version =4.0.0-incubating, =1.0.0, =0.0.7, =1.2.0-release, =1.10.0-release, =1.9.0-release, =1.2.0-release, =1.9.0-release, =2.0.0, =4.0.0-incubating, =4.9.6 Source cves: CVE-2023-37582 Source advisory: OSV:GHSA-GPQ8-963W-8QC9...

9.8CVSS7.2AI score0.8993EPSS
Exploits1
NVD
NVD
added 2023/07/12 10:15 a.m.49 views

CVE-2023-37582

The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the...

9.8CVSS9.7AI score0.8993EPSS
Exploits1References2
OSV
OSV
added 2023/07/12 10:15 a.m.34 views

CVE-2023-37582

The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the...

9.8CVSS9.8AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/12 9:26 a.m.21 views

CVE-2023-37582 Apache RocketMQ: Possible remote code execution when using the update configuration function

The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the...

9.8AI score0.8993EPSS
Exploits1References2
Rows per page
Query Builder