Rabbitmq@3.6.0 Security Vulnerabilities and Issues — Rabbitmq@3.6.0 CVE List

Lucene search

Pivotal SoftwareRabbitmq3.6.0

5 matches found

CVE•added 2017/06/13 6:29 a.m.•83 views

CVE-2017-4966

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. RabbitMQ management UI stores signed-in...

7.8CVSS7.2AI score0.00087EPSS

CVE•added 2016/12/29 9:59 a.m.•79 views

CVE-2016-9877

An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8 and 3.6.x before 3.6.6 and RabbitMQ for PCF 1.5.x before 1.5.20, 1.6.x before 1.6.12, and 1.7.x before 1.7.7. MQTT (MQ Telemetry Transport) connection authentication with a username/password pair succeeds if an existing username is provid...

9.8CVSS8.5AI score0.00399EPSS

CVE•added 2017/06/13 6:29 a.m.•68 views

CVE-2017-4965

6.1CVSS5.8AI score0.01079EPSS

CVE•added 2017/06/13 6:29 a.m.•68 views

CVE-2017-4967

6.1CVSS5.9AI score0.00784EPSS

CVE•added 2016/12/09 8:59 p.m.•62 views

CVE-2015-8786

The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (resource consumption) via the (1) lengths_age or (2) lengths_incr parameter.

6.8CVSS6.1AI score0.0115EPSS