6 matches found
SUSE SLES15 / openSUSE 15 Security Update : rabbitmq-server (SUSE-SU-2025:3809-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:3809-1 advisory. - CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests bsc1245105 - fixed a bad logrotate configuration...
Security update for rabbitmq-server
This update for rabbitmq-server fixes the following issues: CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests bsc1245105 fixed a bad logrotate configuration that allowed escalation from rabbitmq to root, /var/log/rabbitmq ownership is now 750 bsc1246091 Patch Instructions:...
CVE-2025-50200
RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which...
CVE-2025-50200
creationtimestamp| type| source ---|---|--- 2025-06-19 16:45:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18869 2025-06-19 19:50:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrycbdb7xt25 2025-09-24 06:40:10+00:00| seen|...
CVE-2025-50200 RabbitMQ Node can log Basic Auth header from an HTTP request
RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which...
CVE-2025-50200
RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which...