An unsafe parsing of OpenMQ's configuration, allows a remote attacker to read arbitrary files from a MQ Broker's server. A full exploitation could read unauthorized files of the OpenMQ’s host OS. In some scenarios RCE could be achieved.
Published: 2026-03-05
CVSS: 9.8
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Download Exploit for CVE-2026-24457 here:
Use Tor Browser to access .onion site.
https://sonitex.com/exploit-190-cve-2026-2792/
https://sonitex.com/exploit-51-cve-2019-25444/