Soreatu

**Name of the Vulnerable Software and Affected Versions** RocketMQ versions prior to 4.9.7 RocketMQ versions prior to 5.1.2 **Description** The vulnerability in the RocketMQ NameServer component allows for remote command execution. This issue arises when NameServer addresses are exposed on the extranet without proper permission verification, enabling an attacker to exploit the vulnerability by using the update configuration function to execute commands as the system user that RocketMQ is running as. **Recommendations** For RocketMQ 4.x, upgrade to version 4.9.7 or above. For RocketMQ 5.x, upgrade to version 5.1.2 or above.