Malayke

**Name of the Vulnerable Software and Affected Versions** Faktory versions prior to 1.8.0 **Description** The Faktory web dashboard can suffer from denial of service by a crafted malicious URL query parameter `days`. This issue is related to how the backend reads the `days` URL query parameter in the Faktory web dashboard. The value is used directly without any checks to create a string slice. If a very large value is provided, the backend server ends up using a significant amount of memory and causing it to crash. **Recommendations** For versions prior to 1.8.0, update to version 1.8.0 to resolve the issue. As a temporary workaround, consider restricting access to the Faktory web dashboard to minimize the risk of exploitation. Avoid using the `days` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** 1Panel versions prior to 1.4.3 **Description** An OS command injection vulnerability exists in 1Panel firewall functionality. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability. The `/hosts/firewall/ip` endpoint reads user input without validation, allowing an attacker to extend the default functionality of the application and execute system commands. This can lead to a complete compromise of the system. **Recommendations** For versions prior to 1.4.3, upgrade to version 1.4.3 to address the vulnerability. As a temporary workaround, consider restricting access to the `/hosts/firewall/ip` endpoint until the issue is resolved. Avoid using unvalidated user input in the firewall functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apache RocketMQ versions 5.1.0 and below Apache RocketMQ versions prior to 4.9.6 **Description** The vulnerability is related to a permission verification issue in Apache RocketMQ, allowing attackers to perform remote command execution under certain conditions. Several components of RocketMQ, including NameServer, Broker, and Controller, are leaked on the extranet and lack permission verification, enabling an attacker to exploit this vulnerability by using the update configuration function to execute commands as the system users that RocketMQ is running as. Additionally, an attacker can achieve the same effect by forging the RocketMQ protocol content. The vulnerability is being actively exploited in attacks, and it is recommended to upgrade to version 5.1.1 or above for using RocketMQ 5.x or 4.9.6 or above for using RocketMQ 4.x. **Recommendations** For Apache RocketMQ versions 5.1.0 and below, upgrade to version 5.1.1 or above. For Apache RocketMQ versions prior to 4.9.6, upgrade to version 4.9.6 or above.