Lucene search
K

44 matches found

OSV
OSV
added 2026/01/22 2:12 p.m.2 views

SUSE-SU-2026:20126-1 Security update for rabbitmq-server

This update for rabbitmq-server fixes the following issues: Changes in rabbitmq-server: Update to 4.1.5: Highlights - Khepri, an alternative schema data store developed to replace Mnesia, has matured and is now fully supported it previously was an experimental feature - AMQP 1.0 is now a core...

6.1CVSS5.8AI score0.00203EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-9274

Malicious code in bioql PyPI...

7.5CVSS5.1AI score0.01387EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-24351

Malicious code in bioql PyPI...

9.8CVSS7.7AI score0.01418EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/05/22 8:41 p.m.38 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (collectd-sensubility) security update

An update for collectd-sensubility is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.8AI score0.01533EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/22 12:0 a.m.34 views

RHEL 8 : Red Hat OpenStack Platform 17.1 (collectd-sensubility) (RHSA-2024:2767)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2767 advisory. This project provides the possibility to switch from the Sensu-based availability monitoring solution to a monitoring solution based on...

7.5CVSS7.4AI score0.01533EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/05/22 12:0 a.m.29 views

RHEL 9 : Red Hat OpenStack Platform 17.1 (collectd-sensubility) (RHSA-2024:2730)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2730 advisory. This project aims to provide the possibility to switch from Sensu-based availability monitoring solution to a monitoring solution based on...

7.5CVSS7.4AI score0.01533EPSS
Exploits0References8
OSV
OSV
added 2024/03/06 11:3 a.m.24 views

BIT-RABBITMQ-2021-22116

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugi...

7.5CVSS7.2AI score0.01387EPSS
Exploits0References3
NVD
NVD
added 2024/02/27 7:4 p.m.24 views

CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS9.5AI score0.01418EPSS
Exploits0References2
Prion
Prion
added 2024/02/27 7:4 p.m.22 views

Double free

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

7.5CVSS7.1AI score0.01418EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/02/27 7:4 p.m.26 views

CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS6.9AI score0.01418EPSS
Exploits0References3
CVE
CVE
added 2024/02/27 6:58 p.m.154 views

CVE-2024-27099

CVE-2024-27099 affects the Azure uAMQP C library (AMQP 1.0) and is caused by a double-free when processing an incorrect AMQP_VALUE failed state, which may lead to remote code execution. The vulnerability is addressed by updating the submodule to commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987. Se...

9.8CVSS9.4AI score0.01418EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2024/02/27 6:58 p.m.17 views

CVE-2024-27099

The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQPVALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987...

9.8CVSS7.5AI score0.01418EPSS
Exploits0
OSV
OSV
added 2024/02/12 7:58 p.m.27 views

CVE-2024-25110 Azure IoT Platform Device SDK Remote Code Execution Vulnerability

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

9.8CVSS8.3AI score0.06645EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/02/12 7:58 p.m.21 views

CVE-2024-25110

The UAMQP is a general purpose C library for AMQP 1.0. During a call to opengetofferedcapabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule...

9.8CVSS8.1AI score0.06645EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2021-0390)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.01437EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2021/10/10 12:0 a.m.35 views

SUSE SLES15 Security Update : rabbitmq-server (SUSE-SU-2021:3325-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3325-1 advisory. - CVE-2021-32718: Fixed improper neutralization of script-related HTML tags in a web page basic XSS in management UI bsc1187818. -...

7.5CVSS6.2AI score0.01437EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2021/10/10 12:0 a.m.32 views

openSUSE 15 Security Update : rabbitmq-server (openSUSE-SU-2021:3325-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3325-1 advisory. - RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the...

7.5CVSS6.3AI score0.01437EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2021/09/30 12:0 a.m.31 views

SUSE SLES15 Security Update : rabbitmq-server (SUSE-SU-2021:3254-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3254-1 advisory. - CVE-2021-32718: Fixed improper neutralization of script-related HTML tags in a web page basic XSS in management UI bsc1187818. -...

7.5CVSS6.2AI score0.01437EPSS
Exploits2References11
Mageia
Mageia
added 2021/08/06 9:33 a.m.109 views

Updated rabbitmq-server packages fix security vulnerabilities

Updated rabbitmq-server packages fix security vulnerabilities: RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP...

7.5CVSS3.4AI score0.01437EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2021/06/29 12:0 a.m.35 views

FreeBSD : RabbitMQ -- Denial of Service via improper input validation (7003b62d-7252-46ff-a9df-1b1900f1e65b)

Jonathon Knudsen of Synopsys Cybersecurity Research Center reports : All versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious client can exploit the vulnerability by sending malicious AMQP...

7.5CVSS5.6AI score0.01387EPSS
Exploits0References3
Rows per page
Query Builder