2 matches found
CVE-2023-46120
CVE-2023-46120 affects the RabbitMQ Java Client. The issue arises because maxBodyLebgth was not used when receiving Message objects, allowing an attacker to send a very large Message that could cause memory overflow and DoS/OOM in the consumer. The vulnerability is patched in RabbitMQ Java Client...
CVE-2018-11087
CVE-2018-11087 affects Pivotal Spring AMQP and RabbitMQ amqp-client. The issue arises from improper hostname validation, enabling a man-in-the-middle attacker to intercept traffic and view data in transit. Documented impact includes information disclosure due to lack of hostname verification. IBM...