Lucene search
K

1040 matches found

Microsoft CVE
Microsoft CVE
added 2021/12/14 8:0 a.m.29 views

Microsoft Message Queuing Information Disclosure Vulnerability

...

7.5CVSS7.6AI score0.02997EPSS
Exploits0
Kaspersky
Kaspersky
added 2021/12/14 12:0 a.m.97 views

KLA12387 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

9.8CVSS9.6AI score0.11963EPSS
Exploits5References61
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.5 views

Microsoft Message Queuing 信息泄露漏洞

Microsoft Message Queuing technology allows applications running at different times to communicate on heterogeneous networks and systems that are temporarily offline.An information disclosure vulnerability exists in Microsoft Message Queuing. An attacker could exploit this vulnerability to execut...

7.5CVSS6AI score0.02997EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/12/14 12:0 a.m.3 views

PT-2021-6190 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing MSMQ affected versions not specified Description: The issue is related to an information disclosure in the error data area of Microsoft Message Queuing MSMQ in the Microsoft Windows operating system. It may allow a...

7.8CVSS7.2AI score0.02997EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2021/12/14 12:0 a.m.1 views

PT-2021-6327 · Microsoft · Message Queuing +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queuing MSMQ affected versions not specified Description: The issue is related to an information disclosure vulnerability in Microsoft Message Queuing. It allows a remote attacker to gain unauthorized access to protected...

7.5CVSS7.6AI score0.02997EPSS
Exploits0References9
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.4 views

Microsoft Message Queuing 信息泄露漏洞

Microsoft Message Queuing is used to implement solutions for asynchronous and synchronous scenarios that require high performance. An information disclosure vulnerability exists in Microsoft Message Queuing. The following products and editions are affected:Windows 10 Version 21H2 for x64-based...

7.5CVSS7.5AI score0.02997EPSS
Exploits0References5
Ivan 'd0znpp' Novikov
Ivan 'd0znpp' Novikov
added 2021/11/29 8:27 a.m.33 views

What is AMQP Protocol ❓ All you need to know

The cost-free and fast operations of the open-source tool have made them a preferred choice over their closed-source peers. Without putting any hard and fast restrictions on the users, open-source applications have become a norm these days. AMQP Standard is a commonly used messaging protocol used...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2021/11/02 12:0 a.m.7 views

MQTT 缓冲区错误漏洞

MQTT Message Queuing Telemetry Transport is a messaging protocol based on the Publish/Subscribe paradigm under the ISO standard ISO/IEC PRF 20922, which works on the TCP/IP protocol family and is designed as a publish/subscribe messaging protocol for remote devices with low hardware performance a...

9.8CVSS6AI score0.01165EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/10/29 12:0 a.m.4 views

The vulnerability of the AMQP 1.0 message broker plugin of RabbitMQ, related to insufficient input validation, allows a attacker to trigger a service failure.

The vulnerability of the AMQP 1.0 message broker plugin of RabbitMQ is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to cause service failures by sending malicious AMQP messages...

7.5CVSS5.8AI score0.01387EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.6 views

The vulnerability of the Moxa MXView network control software, related to deficiencies in access control, allows a violator to circumvent security restrictions.

The vulnerability of the Moxa MXView network control software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to bypass security restrictions using the MQTT protocol Message Queuing Telemetry Transport...

10CVSS8AI score0.15789EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2021/09/23 1:15 p.m.3 views

ALPINE-CVE-2021-22945

When sending data to an MQTT server, libcurl = 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it again...

9.1CVSS6.9AI score0.06216EPSS
Exploits1References1
NCSC
NCSC
added 2021/06/11 12:0 a.m.2 views

Vulnerability fixed in RabbitMQ

A vulnerability has been fixed in RabbitMQ. A malicious party could potentially exploit the vulnerability to cause a denial-of-service cause by sending a rogue AMQP message to the RabbitMQ server that can receive AMQP 1.0 messages. VMware Tanzu has released updates to fix the vulnerability fix in...

7.5CVSS6.8AI score0.01387EPSS
Exploits0
CNVD
CNVD
added 2020/08/20 12:0 a.m.3 views

Pivotal Software RabbitMQ Elevation of Privilege Vulnerability

Pivotal Software RabbitMQ is the United States Pivotal Software, Inc. of a set of implementation of the Advanced Message Queuing Protocol AMQP open source message broker software. An elevation of privilege vulnerability exists in Pivotal Software RabbitMQ. The vulnerability stems from an incorrec...

6.7CVSS7.2AI score0.00452EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/17 12:0 a.m.5 views

IBM MQ and IBM MQ Appliance Trust Management Issues Vulnerabilities

IBM MQ IBM WebSphere MQ and IBM MQ Appliance are both products of IBM Corporation, U.S.A. IBM MQ is a messaging middleware product. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA.IBM MQ Appliance is an all-in-one appliance for rapid...

6.5CVSS6.8AI score0.00786EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.4 views

IBM MQ Input Validation Error Vulnerability (CNVD-2020-13052)

IBM MQ IBM WebSphere MQ is a messaging middleware product from IBM. The product is mainly for the service-oriented architecture SOA to provide a reliable and proven messaging backbone. An input validation error vulnerability exists in IBM MQ and IBM MQ Appliance. An attacker could exploit this...

6.5CVSS6.6AI score0.01764EPSS
Exploits0References1
OSV
OSV
added 2019/05/06 5:29 p.m.1 views

DEBIAN-CVE-2019-5432

A specifically malformed MQTT Subscribe packet crashes MQTT Brokers using the mqtt-packet module versions 3.5.1, 4.0.0 - 4.1.3, 5.0.0 - 5.6.1, 6.0.0 - 6.1.2 for decoding...

7.5CVSS7AI score0.01586EPSS
Exploits1References1
OSV
OSV
added 2019/03/28 10:29 p.m.2 views

UBUNTU-CVE-2019-0222

In Apache ActiveMQ 5.0.0 - 5.15.8, unmarshalling corrupt MQTT frame can lead to broker Out of Memory exception making it unresponsive...

7.5CVSS6.8AI score0.12357EPSS
Exploits0References12
OSV
OSV
added 2018/11/09 1:29 a.m.5 views

CVE-2018-1684

IBM WebSphere MQ 8.0 through 9.1 is vulnerable to a error with MQTT topic string publishing that can cause a denial of service attack. IBM X-Force ID: 145456...

6.5CVSS5.8AI score0.01271EPSS
Exploits0References2
OSV
OSV
added 2018/10/29 12:29 p.m.4 views

DEBIAN-CVE-2018-18764

An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in a parsemqtt getu16 call. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially...

9.1CVSS8.8AI score0.01835EPSS
Exploits1References1
OSV
OSV
added 2018/10/16 7:49 p.m.2 views

GHSA-Q66C-H853-GQW2 AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache Qpid Java before 6.0.3 might allow remote attackers to bypass authentication

The AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in Apache Qpid Java before 6.0.3 might allow remote attackers to bypass authentication and consequently perform actions via vectors related to connection state logging...

9.1CVSS5.9AI score0.08148EPSS
Exploits0References7
Rows per page
Query Builder