Lucene search
K

24 matches found

NVD
NVD
added 2026/06/02 2:17 p.m.16 views

CVE-2026-9844

Use of default credentials vulnerability in Roche Diagnostics navify Digital Pathology RabbitMQ Management interface modules allows Default Usernames and Passwords. This issue affects navify Digital Pathology: from 2.0.0 before 2.4.1...

8.8CVSS0.00239EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 3:7 p.m.17 views

CVE-2026-44839 RabbitMQ: Unsanitized vhost names allow for XSS in management UI

RabbitMQ is a messaging and streaming broker. From 3.7.0 to before 4.1.2 and 4.0.13, This vulnerability is fixed in 4.1.2 and 4.0.13...

5.6CVSS5.8AI score0.0018EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-8961

Malware in sbrugna...

8.2CVSS8.1AI score0.01534EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 7:20 a.m.8 views

CVE-2024-28990

SolarWinds Access Rights Manager ARM was found to contain a hard-coded credential authentication bypass vulnerability. If exploited, this vulnerability would allow access to the RabbitMQ management console. We thank Trend Micro Zero Day Initiative ZDI for its ongoing partnership in coordinating...

8.8CVSS7.3AI score0.00474EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-32719

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI vi...

4.8CVSS5.7AI score0.01416EPSS
Exploits1References2
CNVD
CNVD
added 2024/05/20 12:0 a.m.5 views

SolarWinds Access Rights Manager Trust Management Issue Vulnerability

SolarWinds Access Rights Manager is a lightweight review management system from SolarWinds. A trust management issue vulnerability exists in SolarWinds Access Rights Manager that can be exploited by an attacker to access the RabbitMQ management console...

9.8CVSS6.6AI score0.01073EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.4 views

SUSE CVE-2014-9650

CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions...

5CVSS7.6AI score0.02622EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.5 views

SUSE CVE-2017-4967

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS7.6AI score0.01915EPSS
Exploits0References4
CVE
CVE
added 2021/06/28 3:15 p.m.211 views

CVE-2021-32719

CVE-2021-32719 affects RabbitMQ’s rabbitmq-server prior to version 3.8.18 where, when a federation link is shown in the management UI via the rabbitmq_federation_management plugin, the consumer tag is rendered without proper [removed] tag sanitization. This could allow JavaScript execution in the...

4.8CVSS5.1AI score0.01416EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/12/19 12:0 a.m.8 views

PT-2019-15815 · Pivotal +1 · Rabbitmq +1

Name of the Vulnerable Software and Affected Versions: Ansible Tower versions 3.5.x through 3.5.2 Ansible Tower versions 3.6.x through 3.6.1 Description: A flaw was found in Ansible Tower where enabling RabbitMQ manager by setting it with '-e rabbitmq enable manager=true' exposes the RabbitMQ...

8.2CVSS8.2AI score0.01534EPSS
Exploits0References3
OSV
OSV
added 2017/06/13 6:29 a.m.2 views

DEBIAN-CVE-2017-4967

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS6.2AI score0.01915EPSS
Exploits0References1
OSV
OSV
added 2017/06/13 6:29 a.m.4 views

DEBIAN-CVE-2017-4966

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. RabbitMQ management UI stores signed-...

7.8CVSS6.2AI score0.00394EPSS
Exploits0References1
OSV
OSV
added 2017/06/13 6:29 a.m.4 views

UBUNTU-CVE-2017-4967

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS6.7AI score0.01915EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2017/06/13 12:0 a.m.7 views

PT-2017-4069 · Pivotal +2 · Rabbitmq +2

Name of the Vulnerable Software and Affected Versions: RabbitMQ versions 3.4.x through 3.5.x and 3.6.x versions prior to 3.6.9 RabbitMQ for PCF versions 1.5.x and 1.6.x versions prior to 1.6.18 and 1.7.x versions prior to 1.7.15 Description: The issue is related to the disclosure of information. ...

7.8CVSS5AI score0.04519EPSS
Exploits1References35
Tenable Nessus
Tenable Nessus
added 2017/05/19 12:0 a.m.29 views

Pivotal RabbitMQ Management Plugin Detection

Binary data pivotalrabbitmqmgmtdetect.nbin...

7.3AI score
Exploits0References1
OSV
OSV
added 2016/12/09 8:59 p.m.6 views

CVE-2015-8786

The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service resource consumption via the 1 lengthsage or 2 lengthsincr parameter...

6.5CVSS6.1AI score
Exploits0References12
CNVD
CNVD
added 2015/01/29 12:0 a.m.10 views

Pivotal Software RabbitMQ management plugin cross-site scripting vulnerability (CNVD-2015-00813)

Pivotal Software RabbitMQ is a British company Pivotal Software's set of implementation of the Advanced Message Queuing Protocol AMQP open source message broker software. RabbitMQ management is one of the management plug-in . A cross-site scripting vulnerability exists in the management plug-in f...

4.3CVSS5.8AI score0.02313EPSS
Exploits0References1
OSV
OSV
added 2015/01/27 8:3 p.m.5 views

DEBIAN-CVE-2014-9650

CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions...

5CVSS7.6AI score0.02622EPSS
Exploits0References1
OSV
OSV
added 2015/01/27 8:2 p.m.7 views

DEBIAN-CVE-2014-9649

Cross-site scripting XSS vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary web script or HTML via the path info to api/, which is not properly handled in an error message...

4.3CVSS6AI score0.02313EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2015/01/27 12:0 a.m.4 views

PT-2015-4326 · Pivotal +1 · Rabbitmq

Name of the Vulnerable Software and Affected Versions: RabbitMQ versions 2.1.0 through 3.4.x Description: A CRLF injection issue exists in the management plugin, allowing remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to th...

5CVSS7.4AI score0.02622EPSS
Exploits0References15
Rows per page
Query Builder