Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:12 a.m.2 views

SUSE CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS6.4AI score0.04519EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.3 views

The vulnerability of the RabbitMQ message broker’s web-management plugin, related to insufficient processing of the format string, allows a attacker to trigger a service failure.

The vulnerability of the plugin for the RabbitMQ message broker’s web management system is related to an error in the HTTP header “X-Reason”. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.5CVSS5.8AI score0.04519EPSS
Exploits1References8Affected Software3
RedHat Linux
RedHat Linux
added 2020/01/13 10:12 a.m.3 views

rabbitmq-server: "X-Reason" HTTP Header can be leveraged to insert a malicious string leading to DoS

A resource-consumption flaw was identified in the rabbitmq-server web management plugin. Utilizing a malicious 'X-Reason' HTTP header, a remote attacker could insert a malicious Erlang format string which will expand and consume heap memory, resulting in a crash. The highest threat from this...

7.5CVSS7.2AI score0.04519EPSS
Exploits1References5
OSV
OSV
added 2019/11/23 12:15 a.m.1 views

DEBIAN-CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS5.5AI score0.04519EPSS
Exploits1References1
OSV
OSV
added 2019/11/23 12:15 a.m.1 views

UBUNTU-CVE-2019-11287

Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be...

7.5CVSS6.1AI score0.04519EPSS
Exploits1References4
Rows per page
Query Builder