Rabbitmq Security Vulnerabilities and Issues — Rabbitmq CVE List

Lucene search

VmwareRabbitmq

3 matches found

CVE•added 2021/06/08 12:15 p.m.•194 views

CVE-2021-22116

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin ...

7.5CVSS7AI score0.01187EPSS

CVE•added 2021/06/28 4:15 p.m.•169 views

CVE-2021-32719

RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI via the rabbitmq_federation_management plugin, its consumer tag was rendered without proper [removed] tag sanitization. This potentially allo...

4.8CVSS5.1AI score0.00078EPSS

CVE•added 2021/06/28 3:15 p.m.•147 views

CVE-2021-32718

RabbitMQ is a multi-protocol messaging broker. In rabbitmq-server prior to version 3.8.17, a new user being added via management UI could lead to the user's bane being rendered in a confirmation message without proper [removed] tag sanitization, potentially allowing for JavaScript code execution in...

5.4CVSS5.1AI score0.00072EPSS