16 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-46118
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service DoS...
Azure Linux 3.0 Security Update: rabbitmq-server (CVE-2023-46118)
The version of rabbitmq-server installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46118 advisory. - RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP reque...
CBL Mariner 2.0 Security Update: rabbitmq-server (CVE-2023-46118)
The version of rabbitmq-server installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46118 advisory. - RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP reque...
CVE-2023-46118 affecting package rabbitmq-server for versions less than 3.11.24-1
CVE-2023-46118 affecting package rabbitmq-server for versions less than 3.11.24-1. An upgraded version of the package is available that resolves this issue...
SUSE SLES15 / openSUSE 15 : Feature update for rabbitmq-server313, erlang26, elixir115 (SUSE-SU-SUSE-FU-2024:2078-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-SUSE-FU-2024:2078-1 advisory. rabbitmq-server was implemented with a parallel versioned RPM package at version 3.13.1 jscPED-8414: - Securi...
CVE-2023-46118 affecting package rabbitmq-server for versions less than 3.13.0-1
CVE-2023-46118 affecting package rabbitmq-server for versions less than 3.13.0-1. An upgraded version of the package is available that resolves this issue...
openSUSE: Security Advisory for rabbitmq (SUSE-SU-2023:4939-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (rabbitmq-server) security update
An update for rabbitmq-server is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
RHEL 9 : Red Hat OpenStack Platform 17.1 (rabbitmq-server) (RHSA-2024:0217)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:0217 advisory. RabbitMQ is an implementation of AMQP, the emerging standard for high performance enterprise messaging. The RabbitMQ server is a robust and scalable...
SUSE SLES15 / openSUSE 15 Security Update : rabbitmq-server (SUSE-SU-2023:4939-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4939-1 advisory. - CVE-2023-46118: Introduce HTTP request body limit for definition uploads bsc1216582. Tenable has extracted the preceding...
SUSE-SU-2023:4939-1 Security update for rabbitmq-server
This update for rabbitmq-server fixes the following issues: - CVE-2023-46118: Introduce HTTP request body limit for definition uploads bsc1216582...
Debian dla-3687 : rabbitmq-server - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3687 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3687-1 [email protected] https://www.debian.org/lts/security/...
Debian DSA-5571-1 : rabbitmq-server - security update
The remote Debian 11 / 12 host has a package installed that is affected by a vulnerability as referenced in the dsa-5571 advisory. - RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service DoS...
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : RabbitMQ vulnerability (USN-6501-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has a package installed that is affected by a vulnerability as referenced in the USN-6501-1 advisory. It was discovered that RabbitMQ incorrectly handled certain HTTP requests. An attacker could possibly use this issue to cause a denial...
AZL-35196 CVE-2023-46118 affecting package rabbitmq-server for versions less than 3.13.0-1
RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service DoS attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API...
CVE-2023-46118
CVE-2023-46118 affects RabbitMQ’s HTTP API where no request body size limit was enforced. An authenticated user can send oversized messages via the HTTP API, potentially triggering target node termination by an OOM-like mechanism (DoS). The vulnerability is addressed by patches in RabbitMQ server...