GHSA-V525-C3G5-CG9P Unsafe Deserialization that can Result in Code Execution

JMS Client for RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0 is vulnerable to unsafe deserialization that can result in code execution via crafted StreamMessage data...

Unsafe Deserialization that can Result in Code Execution

JMS Client for RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0 is vulnerable to unsafe deserialization that can result in code execution via crafted StreamMessage data...

Arbitrary Code Execution

rabbitmq-jms is vulnerable to arbitrary code execution. Untrusted objects are not filtered and passed through StreamMessage in the JMS to be deserialized before or while being given to the message listeners. An authenticated user is able to abuse the vulnerability to execute arbitrary code on the...

CVE-2020-36282

JMS Client for RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0 is vulnerable to unsafe deserialization that can result in code execution via crafted StreamMessage data...

CVE-2020-36282

JMS Client for RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0 is vulnerable to unsafe deserialization that can result in code execution via crafted StreamMessage data...

Deserialization of untrusted data

JMS Client for RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0 is vulnerable to unsafe deserialization that can result in code execution via crafted StreamMessage data...

Pivotal Software RabbitMQ 代码问题漏洞

Pivotal Software RabbitMQ is a suite of open source message broker software from Pivotal Software, USA that implements the Advanced Message Queuing Protocol AMQP. A code issue vulnerability exists in JMS Client on RabbitMQ 1.x before 1.15.2 and 2.x before 2.2.0, which stems from vulnerability to...