Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:2 a.m.23 views

CVE-2019-17572

In Apache RocketMQ 4.2.0 to 4.6.0, when the automatic topic creation in the broker is turned on by default, an evil topic like “../../../../topic2020” is sent from rocketmq-client to the broker, a topic folder will be created in the parent directory in brokers, which leads to a directory traversa...

5.3CVSS6.7AI score0.02985EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/10 12:0 a.m.34 views

Apache RocketMQ 4.2.0 < 4.6.1 Directory Traversal (CVE-2023-37582)

In Apache RocketMQ 4.2.0 to 4.6.0, when the automatic topic creation in the broker is turned on by default, an evil topic like ../../../../topic2020 is sent from rocketmq-client to the broker, a topic folder will be created in the parent directory in brokers, which leads to a directory traversal...

9.8CVSS6.6AI score0.90427EPSS
Exploits1References4
NVD
NVD
added 2020/05/14 5:15 p.m.40 views

CVE-2019-17572

In Apache RocketMQ 4.2.0 to 4.6.0, when the automatic topic creation in the broker is turned on by default, an evil topic like “../../../../topic2020” is sent from rocketmq-client to the broker, a topic folder will be created in the parent directory in brokers, which leads to a directory traversa...

5.3CVSS6.3AI score0.02985EPSS
Exploits0References2
CVE
CVE
added 2020/05/14 4:10 p.m.77 views

CVE-2019-17572

CVE-2019-17572 affects Apache RocketMQ from versions 4.2.0 through 4.6.0. When broker automatic topic creation is enabled by default, an attacker-provided topic such as “../../../../topic2020” can cause a directory to be created in the broker’s parent directory, resulting in a directory traversal...

5.3CVSS5.1AI score0.02985EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder