Latest vmware rabbitmq Vulnerabilities

● CVE-2023-46118

Denial of Service by publishing large messages over the HTTP API

debian/rabbitmq-server<=3.7.8-4<=3.8.9-3

Vmware Rabbitmq<3.11.24

Vmware Rabbitmq>=3.12.0<3.12.7

● CVE-2022-31008

RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker (link) state. The encryption key used to enc...

Vmware Rabbitmq<3.8.32

Vmware Rabbitmq>=3.9.0<3.9.18

Vmware Rabbitmq>=3.10.0<3.10.2

● CVE-2021-32719

RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI via the `rabbitmq_federation_management` p...

Vmware Rabbitmq<3.8.18

● CVE-2021-32718

RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.17, a new user being added via management UI could lead to the user's bane being rendered in a confirmation messa...

Vmware Rabbitmq<3.8.17

● CVE-2021-22116

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerabi...

Vmware Rabbitmq<3.8.16

Debian Debian Linux=9.0

● CVE-2021-22117

RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins.

Vmware Rabbitmq>=3.8.0<3.8.16

Microsoft Windows

● CVE-2020-5419

RabbitMQ versions 3.8.x prior to 3.8.7 are prone to a Windows-specific binary planting security vulnerability that allows for arbitrary code execution. An attacker with write privileges to the RabbitM...

Pivotal Software RabbitMQ<3.7.28

Vmware Rabbitmq>=3.8.0<3.8.7

● CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web managem...

redhat/rabbitmq-server<3.7.21

redhat/rabbitmq-server<3.8.1

Pivotal Software Rabbitmq>=1.16.0<1.16.7

Pivotal Software Rabbitmq>=1.17.0<1.17.4

Pivotal Software RabbitMQ>=3.7.0<3.7.21

Vmware Rabbitmq>=3.8.0<3.8.1

and 4 more

● CVE-2019-11291

Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, feder...

redhat/rabbitmq-server<3.7.20

redhat/rabbitmq-server<3.8.1

Vmware Rabbitmq>=1.16.0<1.16.7

Vmware Rabbitmq>=1.17.0<1.17.4

Vmware Rabbitmq>=3.7.0<3.7.20

Vmware Rabbitmq=3.8.0

and 1 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.