org.apache.rocketmq:rocketmq-broker (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.apache.rocketmq:rocketmq-broker, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2019-17572 — CVSS 5.3 (medium): In Apache RocketMQ 4.2.0 to 4.6.0, when the automatic topic creation in the broker is turned on by default, an evil topic like…