nuclei 3.04 not working on template CVE-2023-33246

[yfwangsh]

Nuclei version: v3.0.4

Current Behavior:

I have setup a vulhub docker to test on template CVE-2023-33246, nuclei used to work on v2.9.15

but when I use a lastest 3.0.4, vulnerability can not be detected:

Expected Behavior:

template CVE-2023-33246 can work on v3.0.4

Steps To Reproduce:

1. setup env with vulhub docker for RocketMQ CVE-2023-33246
2. use version v2.9.15
   ./nuclei -t nuclei-templates/network/cves/2023/CVE-2023-33246.yaml -u -debug
   can get result for [CVE-2023-33246] [tcp] [critical]
3. use version v3.0.4
   ./nuclei -t nuclei-templates/network/cves/2023/CVE-2023-33246.yaml -u -debug
   can get warn message [WRN] [CVE-2023-33246] Could not make network request for () : could not read from server: [:RUNTIME] reader: error while reading from connection

[LuD1161]

Hey @yfwangsh 👋 Thank you for taking the time to create this issue and contributing to this project 🙌

Version 2.x.x -> 3.xx was a major change, so it could be that the functionality is not the same in the newer version. With that said I would try to reproduce the issue and see if the team can reproduce it.

Can you help me understand more about the vulnerable machine environment? Any information might be helpful

[yfwangsh]

My pleasure and thanks for you reply.
I used docker to setup the vulnerable machine environment.
The docker image comes from vulhub(https://github.com/vulhub/vulhub)
Here's the docker-compose file from https://github.com/vulhub/vulhub/tree/master/rocketmq/CVE-2023-33246:

version: '2'
services:
 rocketmq:
   image: vulhub/rocketmq:5.1.0
   ports:
     - 10911:10911

[ehsandeep]

@yfwangsh this should be fixed with latest nuclei release.