CVE-2025-54539

Apache ActiveMQ NMS AMQP Client (vulnerable up to 2.3.0) suffers Deserialization of Untrusted Data due to unbounded deserialization logic when connecting to untrusted AMQP servers. Malicious responses could lead to arbitrary code execution on the client side; a 2.1.0 deserialization restriction v...

PT-2025-42438

Name of the Vulnerable Software and Affected Versions Apache ActiveMQ NMS AMQP versions prior to 2.4.0 Description A deserialization of untrusted data issue exists in the Apache ActiveMQ NMS AMQP Client. Malicious servers can exploit unbounded deserialization logic to craft responses that may lea...

EUVD-2023-39786

Malicious code in bioql PyPI...

EUVD-2022-3674

Malicious code in bioql PyPI...

librabbitmq bug fix and enhancement update

An update is available for librabbitmq. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The librabbitmq package provides a C-language AMQP client library for use...

Security Bulletin: IBM Storage Ceph is vulnerable to Insecure credentials submission in the RHEL UBI (CVE-2023-35789)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. CVE-2023-35789. Vulnerability Details CVEID:CVE-2023-35789 DESCRIPTION: RabbitMQ C AMQP client library aka rabbitmq-c could allow a...

Oracle Linux 8 : librabbitmq (ELSA-2023-7150)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7150 advisory. 0.9.0-4 - Resolves: 2215765, insecure credentials submission Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : librabbitmq (ELSA-2023-6482)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6482 advisory. 0.11.0-7 - add missing gating.yaml - fix rpminspect issue Related: 2215766 0.11.0-6 - Resolves: 2215766, insecure credentials submission Tenable has extracted t...

Moderate: Red Hat Security Advisory: librabbitmq security update

An update for librabbitmq is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

CentOS 8 : librabbitmq (CESA-2023:7150)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:7150 advisory. - An issue was discovered in the C AMQP client library aka rabbitmq-c through 0.13.0 for RabbitMQ. Credentials can only be entered on the command line e.g., for...

RHEL 9 : librabbitmq (RHSA-2023:6482)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6482 advisory. The librabbitmq packages provide an Advanced Message Queuing Protocol AMQP client library that allows you to communicate with AMQP servers using...

Denial Of Service (DoS)

amqp-client is vulnerable to Denial Of Service DoS. The vulnerability exists because the library does not incorporate the maximum inbound message size into the ConnectionFactory. As a result, an attacker can potentially cause an application crash by sending excessively large messages, leading to ...

ai.platon.pulsar:pulsar-beans (>=1.12.0 <=2.1.0), ai.platon.pulsar:pulsar-filter (>=1.12.0 <=2.1.0) +2769 more potentially affected by CVE-2023-46120 via com.rabbitmq:amqp-client (>=1.7.2 <=5.17.1)

com.rabbitmq:amqp-client MAVEN version =1.7.2, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =0.1, =1.0.4, =1.0.4, =0.1, =0.1, =1.0.8, =1.0.8, =3.0.0 and more Source cves: CVE-2023-46120 Source advisory: OSV:GHSA-MM8H-8587-P46H...

Security Bulletin: Vulnerabilities in amqp-client affect IBM Storage Protect Client, IBM Storage Protect for Virtual Environments, and IBM Storage Protect for Space Management (CVE-2018-11087)

Summary IBM Storage Protect Backup-Archive Client Linux x8664 only, IBM Storage Protect for Virtual Environments Data Protection for VMware on Windows and Linux x8664, and IBM Storage Protect for Space Management Linux x8664 only can be affected by a vulnerability in Pivotal Sprint-AMQP and...

CVE-2023-35789

An issue was discovered in the C AMQP client library aka rabbitmq-c through 0.13.0 for RabbitMQ. Credentials can only be entered on the command line e.g., for amqp-publish or amqp-consume and are thus visible to local attackers by listing a process and its arguments...

CVE-2023-35789

An issue was discovered in the C AMQP client library aka rabbitmq-c through 0.13.0 for RabbitMQ. Credentials can only be entered on the command line e.g., for amqp-publish or amqp-consume and are thus visible to local attackers by listing a process and its arguments...

CVE-2023-35789

An issue was discovered in the C AMQP client library aka rabbitmq-c through 0.13.0 for RabbitMQ. Credentials can only be entered on the command line e.g., for amqp-publish or amqp-consume and are thus visible to local attackers by listing a process and its arguments...

ALSA-2020:4445 Moderate: librabbitmq security update

The librabbitmq packages provide an Advanced Message Queuing Protocol AMQP client library that allows you to communicate with AMQP servers using protocol version 0-9-1. Security Fixes: librabbitmq: integer overflow in amqphandleinput in amqpconnection.c leads to heap-based buffer overflow...

Moderate: librabbitmq security update

The librabbitmq packages provide an Advanced Message Queuing Protocol AMQP client library that allows you to communicate with AMQP servers using protocol version 0-9-1. Security Fixes: librabbitmq: integer overflow in amqphandleinput in amqpconnection.c leads to heap-based buffer overflow...

librabbitmq security update

CentOS Errata and Security Advisory CESA-2020:3949 An update for librabbitmq is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...