Attacks leveraging a critical Apache RocketMQ flaw, tracked as CVE-2023-33246, to deploy the DreamBus botnet and a Monero miner have prompted the inclusion of the bug in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, according to BleepingComputer.
Article Link: CISA adds critical Apache RocketMQ flaw in KEV catalog | SC Media