9 matches found
Security Bulletin: Vulnerability in RabbitMQ Java Client affects IBM watsonx.data
Summary RabbitMQ Java Client is vulnerable to a denial of service, caused by no message size limit in maxBodyLebgth. By sending a specially crafted message, a remote attacker could exploit this vulnerability to cause a memory overflow, and results in a denial of service condition. This can affect...
Security Bulletin: Vulnerabilities in Golang Go and RabbitMQ Java Client might affect IBM Storage Copy Data Management
Summary IBM Storage Copy Data Management can be affected by vulnerabilities in Golang Go and RabbitMQ Java Client. Vulnerabilities include cause a denial of service condition and cause a memory overflow on the system as described by the CVE in the "Vulnerability Details" section. CVE-2023-45288,...
Security Bulletin: The IBM QRadar SIEM RabbitMQ protocol is vulnerable to a denial of service (CVE-2023-46120)
Summary The RabbitMQ Java Client is vulnerable to a denial of service, caused by no message size limit in maxBodyLength. Vulnerability Details CVEID:CVE-2023-46120 DESCRIPTION: RabbitMQ Java Client is vulnerable to a denial of service, caused by no message size limit in maxBodyLebgth. By sending ...
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in RabbitMQ Java Client [CVE-2023-46120]
Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in RabbitMQ Java Client, caused by no message size limit in maxBodyLebgth. CVE-2023-46120. RabbitMQ is a database used in one of our Speech microservices. This vulnerabilitiy has been...
CVE-2023-46120 vulnerabilities
Vulnerabilities for packages: trino, cassandra-reaper...
CVE-2023-46120 vulnerabilities
Vulnerabilities for packages: trino, cassandra-reaper...
CVE-2023-46120 RabbitMQ Java client's lack of message size limitation leads to remote DoS attack
The RabbitMQ Java client library allows Java and JVM-based applications to connect to and interact with RabbitMQ nodes. maxBodyLebgth was not used when receiving Message objects. Attackers could send a very large Message causing a memory overflow and triggering an OOM Error. Users of RabbitMQ may...
ai.platon.pulsar:pulsar-beans (>=1.12.0 <=2.1.0), ai.platon.pulsar:pulsar-filter (>=1.12.0 <=2.1.0) +2777 more potentially affected by CVE-2023-46120 via com.rabbitmq:amqp-client (>=1.7.2 <=5.17.1)
com.rabbitmq:amqp-client MAVEN version =1.7.2, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =1.12.0, =0.1, =1.0.4, =1.0.4, =0.1, =0.1, =1.0.8, =1.0.8, =3.0.0 and more Source cves: CVE-2023-46120 Source advisory: OSV:GHSA-MM8H-8587-P46H...
CVE-2023-46120
creationtimestamp| type| source ---|---|--- 2023-10-23 10:35:01+00:00| published-proof-of-concept| https://github.com/rabbitmq/rabbitmq-java-client/security/advisories/GHSA-mm8h-8587-p46h 2023-10-25 22:45:15+00:00| seen| https://t.me/cibsecurity/72846...