Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-1328-ts31-5qak

Summary

Improper Control of Generation of Code ('Code Injection')
For RocketMQ versions 5.1.0 and below, under certain conditions, there is a risk of remote command execution. 

Several components of RocketMQ, including NameServer, Broker, and Controller, are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the update configuration function to execute commands as the system users that RocketMQ is running as. Additionally, an attacker can achieve the same effect by forging the RocketMQ protocol content. 

To prevent these attacks, users are recommended to upgrade to version 5.1.1 or above for using RocketMQ 5.x or 4.9.6 or above for using RocketMQ 4.x .

Aliases

alias	CVE-2023-33246

alias	GHSA-x3cq-8f32-5f63

Fixed_packages

url pkg:maven/org.apache.rocketmq/rocketmq-broker@5.1.1

purl pkg:maven/org.apache.rocketmq/rocketmq-broker@5.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jk3w-dds4-qbhw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-broker@5.1.1

url pkg:maven/org.apache.rocketmq/rocketmq-client@5.1.1

purl pkg:maven/org.apache.rocketmq/rocketmq-client@5.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jk3w-dds4-qbhw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-client@5.1.1

url	pkg:maven/org.apache.rocketmq/rocketmq-controller@5.1.1
purl	pkg:maven/org.apache.rocketmq/rocketmq-controller@5.1.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-controller@5.1.1

url	pkg:maven/org.apache.rocketmq/rocketmq-namesrv@4.9.6
purl	pkg:maven/org.apache.rocketmq/rocketmq-namesrv@4.9.6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-namesrv@4.9.6

url	pkg:maven/org.apache.rocketmq/rocketmq-namesrv@5.1.1
purl	pkg:maven/org.apache.rocketmq/rocketmq-namesrv@5.1.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-namesrv@5.1.1

Affected_packages

url pkg:maven/org.apache.rocketmq/rocketmq-broker@5.0.0

purl pkg:maven/org.apache.rocketmq/rocketmq-broker@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1328-ts31-5qak

vulnerability	VCID-jk3w-dds4-qbhw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-broker@5.0.0

url pkg:maven/org.apache.rocketmq/rocketmq-controller@5.0.0

purl pkg:maven/org.apache.rocketmq/rocketmq-controller@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1328-ts31-5qak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-controller@5.0.0

url pkg:maven/org.apache.rocketmq/rocketmq-namesrv@4.0.0

purl pkg:maven/org.apache.rocketmq/rocketmq-namesrv@4.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1328-ts31-5qak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-namesrv@4.0.0

url pkg:maven/org.apache.rocketmq/rocketmq-namesrv@5.0.0

purl pkg:maven/org.apache.rocketmq/rocketmq-namesrv@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1328-ts31-5qak

vulnerability	VCID-jk3w-dds4-qbhw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.rocketmq/rocketmq-namesrv@5.0.0

References

reference_url	https://github.com/apache/rocketmq
reference_id
reference_type
scores
url	https://github.com/apache/rocketmq

reference_url	https://github.com/apache/rocketmq/commit/9d411cf04a695e7a3f41036e8377b0aa544d754d
reference_id
reference_type
scores
url	https://github.com/apache/rocketmq/commit/9d411cf04a695e7a3f41036e8377b0aa544d754d

reference_url	https://github.com/apache/rocketmq/commit/c3ada731405c5990c36bf58d50b3e61965300703
reference_id
reference_type
scores
url	https://github.com/apache/rocketmq/commit/c3ada731405c5990c36bf58d50b3e61965300703

reference_url	https://lists.apache.org/thread/1s8j2c8kogthtpv3060yddk03zq0pxyp
reference_id
reference_type
scores
url	https://lists.apache.org/thread/1s8j2c8kogthtpv3060yddk03zq0pxyp

reference_url	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-33246
reference_id
reference_type
scores
url	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-33246

reference_url	https://www.vicarius.io/vsociety/posts/rocketmq-rce-cve-2023-33246-33247
reference_id
reference_type
scores
url	https://www.vicarius.io/vsociety/posts/rocketmq-rce-cve-2023-33246-33247

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-33246
reference_id	CVE-2023-33246
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-33246

reference_url	https://github.com/jakabakos/CVE-2023-33246_Apache_RocketMQ_RCE
reference_id	CVE-2023-33246_APACHE_ROCKETMQ_RCE
reference_type
scores
url	https://github.com/jakabakos/CVE-2023-33246_Apache_RocketMQ_RCE

reference_url	https://github.com/Malayke/CVE-2023-33246_RocketMQ_RCE_EXPLOIT
reference_id	CVE-2023-33246_ROCKETMQ_RCE_EXPLOIT
reference_type
scores
url	https://github.com/Malayke/CVE-2023-33246_RocketMQ_RCE_EXPLOIT

reference_url	https://github.com/advisories/GHSA-x3cq-8f32-5f63
reference_id	GHSA-x3cq-8f32-5f63
reference_type
scores
url	https://github.com/advisories/GHSA-x3cq-8f32-5f63

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	94
name	Improper Control of Generation of Code ('Code Injection')
description	The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

Exploits

Severity_range_score null

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1328-ts31-5qak

Vulnerability Instance