Lucene search
K

79 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-14081

Malware in sbrugna...

6.1CVSS6.1AI score0.03329EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.18 views

EUVD-2018-11898

Malware in sbrugna...

8.5CVSS7.4AI score0.0183EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-2969

Malware in sbrugna...

4.8CVSS4.6AI score0.01165EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2018-1279

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a multi-tenant cluster....

8.5CVSS7.2AI score0.0183EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/31 12:0 a.m.62 views

Pivotal RabbitMQ 3.8.x < 3.8.16 Code Execution

RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins. A malicious actor can execute arbitrary code on the running RabbitMQ server by adding arbitrary...

7.8CVSS7.9AI score0.00611EPSS
Exploits0References4
OSV
OSV
added 2022/05/24 5:1 p.m.43 views

GHSA-HRFH-7J5F-8CCR Pivotal RabbitMQ is vulnerable to a denial of service attack

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS7.2AI score0.04519EPSS
Exploits1References8
OSV
OSV
added 2022/05/24 5:1 p.m.30 views

GHSA-9PF7-F47Q-MWPQ Cross-site Scripting in RabbitMQ

Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious use...

3.5CVSS4.5AI score0.00796EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/07/29 12:0 a.m.236 views

RabbitMQ < 3.8.18 XSS

Pivotal RabbitMQ versions prior to 3.8.18 are affected by a cross-site scripting XSS vulnerability in the rabbitmqfederationmanagement plugin due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user ...

4.8CVSS5AI score0.01416EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/06/24 12:0 a.m.47 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : RabbitMQ vulnerabilities (USN-5004-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5004-1 advisory. It was discovered that RabbitMQ incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial o...

7.5CVSS5.8AI score0.04519EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.62 views

Pivotal RabbitMQ 3.8.x < 3.8.16 DoS

Pivotal RabbitMQ versions 3.8.x prior to 3.8.16 are affected by a denial of service DoS vulnerability due to improper input validation. A remote attacker can exploit this by sending malicious AMQP messages in order to cause a crash. Note that Nessus has not tested for these issues but has instead...

7.5CVSS5.7AI score0.01387EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/12/29 12:0 a.m.85 views

Pivotal RabbitMQ < 3.7.18 Cross Site Scripting (XSS) Vulnerability

According to its self-reported version, the version of Pivotal RabbitMQ running on the remote web server is prior to 3.7.18. It is, therefore, affected by cross site scripting XSS vulnerability. A cross-site scripting XSS vulnerability exists in two components, the virtual host limits page, and t...

4.8CVSS5AI score0.01165EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/12/29 12:0 a.m.40 views

Pivotal RabbitMQ < 3.3.4 Security Bypass Vulnerability

According to its self-reported version, the version of Pivotal RabbitMQ running on the remote web server is prior to 3.3.4. It is, therefore, affected by security bypass vulnerability. An unauthenticated, remote attacker could bypass security restrictions, caused by the improper handling of...

5CVSS5.7AI score0.01393EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/12/29 12:0 a.m.41 views

Pivotal RabbitMQ 3.7.x < 3.7.20 / 3.8.x < 3.8.1 Cross Site Scripting (XSS)

Pivotal RabbitMQ, 3.7 versions prior to 3.7.20 and 3.8 version prior to 3.8.1, contain two endpoints, federation and shovel, which do not properly sanitize user input. An authenticated, remote attacker with administrative access could craft a cross site scripting attack via the vhost or node name...

4.8CVSS4.6AI score0.00796EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/12/29 12:0 a.m.64 views

Pivotal RabbitMQ 3.7.x < 3.7.21 / 3.8.x < 3.8.1 Denial of Service

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The 'X-Reason' HTTP Header can be...

7.5CVSS5.7AI score0.04519EPSS
Exploits1References3
CNVD
CNVD
added 2019/11/25 12:0 a.m.18 views

Pivotal Software RabbitMQ Cross-Site Scripting Vulnerability

Pivotal Software RabbitMQ is the United States Pivotal Software, Inc. of a set of implementation of the Advanced Message Queuing Protocol AMQP open source message broker software. A cross-site scripting vulnerability exists in Pivotal Software RabbitMQ. The vulnerability stems from a lack of prop...

4.8CVSS6.3AI score0.00796EPSS
Exploits0References1
NVD
NVD
added 2019/11/23 12:15 a.m.18 views

CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS5.8AI score0.04519EPSS
Exploits1References6
OSV
OSV
added 2019/11/23 12:15 a.m.28 views

CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS6.6AI score0.04519EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2019/11/23 12:15 a.m.32 views

CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS6.3AI score0.04519EPSS
Exploits1References3
Prion
Prion
added 2019/11/23 12:15 a.m.18 views

Format string

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

5CVSS5.7AI score0.04519EPSS
Exploits1References6Affected Software4
CVE
CVE
added 2019/11/22 11:26 p.m.309 views

CVE-2019-11287

CVE-2019-11287 affects Pivotal RabbitMQ and RabbitMQ for Pivotal Platform web management plugin. Versions 3.7.x before 3.7.21, 3.8.x before 3.8.1, and 1.16.x before 1.16.7 and 1.17.x before 1.17.4 are vulnerable. The vulnerability allows a crafted X-Reason HTTP header to inject a malicious Erlang...

7.5CVSS5.6AI score0.04519EPSS
Exploits1References6Affected Software2
Rows per page
Query Builder