VYPR

Maven package

org.apache.rocketmq/rocketmq-all

pkg:maven/org.apache.rocketmq/rocketmq-all

Vulnerabilities (1)

  • CVE-2024-23321Jul 22, 2024
    affected >= 4.5.2, < 5.3.0fixed 5.3.0

    For RocketMQ versions 5.2.0 and below, under certain conditions, there is a risk of exposure of sensitive Information to an unauthorized actor even if RocketMQ is enabled with authentication and authorization functions. An attacker, possessing regular user privileges or listed i