A significant vulnerability, listed as CVE-2023-33246, that affects Apache’s RocketMQ distributed messaging and streaming platform has been added to the U.S. Cybersecurity and Infrastructure Security Agency’s (CISA) list of known exploited vulnerabilities (KEV).
Several threat actors may now be using the flaw to install different payloads on affected systems (RocketMQ versions 5.1.0 and below).
Without authentication, the vulnerability may be exploited, and DreamBus botnet operators have been using it to deploy a Monero cryptocurrency miner in the wild since at least June read more CISA warns of critical Apache RocketMQ bug exploited in attacks.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.