Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-5004-1
HistoryJun 24, 2021 - 12:00 a.m.

RabbitMQ vulnerabilities

2021-06-2400:00:00
ubuntu.com
928

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.7 High

AI Score

Confidence

High

0.451 Medium

EPSS

Percentile

97.4%

JSON

Releases

  • Ubuntu 21.04
  • Ubuntu 20.10
  • Ubuntu 20.04 LTS
  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM

Packages

  • rabbitmq-server - AMQP server written in Erlang

Details

It was discovered that RabbitMQ incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 LTS. (CVE-2019-11287)

Jonathan Knudsen discovered RabbitMQ incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2021-22116)

OSVersionArchitecturePackageVersionFilename
Ubuntu21.04noarchrabbitmq-server< 3.8.9-2ubuntu0.1UNKNOWN
Ubuntu20.10noarchrabbitmq-server< 3.8.5-1ubuntu0.2UNKNOWN
Ubuntu20.04noarchrabbitmq-server< 3.8.2-0ubuntu1.3UNKNOWN
Ubuntu18.04noarchrabbitmq-server< 3.6.10-1ubuntu0.5UNKNOWN
Ubuntu16.04noarchrabbitmq-server< 3.5.7-1ubuntu0.16.04.4+esm1UNKNOWN
Ubuntu16.04noarchrabbitmq-server< 3.5.7-1ubuntu0.16.04.4UNKNOWN

Related

openvas 9
osv 6
nessus 14
redhatcve 2
ubuntucve 2
checkpoint_advisories 1
symantec 1
nvd 2
prion 2
cvelist 2
debiancve 2
cve 2
archlinux 1
freebsd 2
veracode 2
debian 1
github 1
fedora 2
redhat 1
mageia 1
suse 2
oracle 1
openvas
openvas
Ubuntu: Security Advisory (USN-5004-1)
2021-06-25 00:00:00
Debian: Security Advisory (DLA-2710-1)
2021-07-20 00:00:00
Fedora Update for rabbitmq-server FEDORA-2019-74d2feb5be
2019-12-08 00:00:00
osv
osv
rabbitmq-server vulnerabilities
2021-06-24 15:04:30
CVE-2021-22116
2021-06-08 12:15:10
BIT-rabbitmq-2021-22116
2024-03-06 11:03:52
nessus
nessus
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : RabbitMQ vulnerabilities (USN-5004-1)
2021-06-24 00:00:00
Pivotal RabbitMQ 3.7.x < 3.7.21 / 3.8.x < 3.8.1 Denial of Service
2020-12-29 00:00:00
Pivotal RabbitMQ 3.8.x < 3.8.16 DoS
2021-05-19 00:00:00
redhatcve
redhatcve
CVE-2019-11287
2019-12-13 15:08:28
CVE-2021-22116
2021-05-19 00:25:45
ubuntucve
ubuntucve
CVE-2019-11287
2019-11-23 00:00:00
CVE-2021-22116
2021-06-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Pivotal RabbitMQ X-Reason Denial of Service (CVE-2019-11287)
2020-04-27 00:00:00
symantec
symantec
Pivotal RabbitMQ CVE-2019-11287 Remote Denial of Service Vulnerability
2019-11-22 00:00:00
nvd
nvd
CVE-2021-22116
2021-06-08 12:15:10
CVE-2019-11287
2019-11-23 00:15:10
prion
prion
Format string
2019-11-23 00:15:00
Input validation
2021-06-08 12:15:00
cvelist
cvelist
CVE-2019-11287 RabbitMQ Web Management Plugin DoS via heap overflow
2019-11-22 00:00:00
CVE-2021-22116
2021-06-08 11:23:58
debiancve
debiancve
CVE-2021-22116
2021-06-08 12:15:10
CVE-2019-11287
2019-11-23 00:15:10
cve
cve
CVE-2021-22116
2021-06-08 12:15:10
CVE-2019-11287
2019-11-23 00:15:10
archlinux
archlinux
[ASA-202106-17] rabbitmq: denial of service
2021-06-01 00:00:00
freebsd
freebsd
RabbitMQ -- Denial of Service via improper input validation
2021-05-10 00:00:00
RabbitMQ -- Denial of Service in AMQP1.0 plugin
2021-05-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-08-12 15:27:48
Denial Of Service
2021-08-12 14:37:10
debian
debian
[SECURITY] [DLA 2710-1] rabbitmq-server security update
2021-07-19 17:21:29
github
github
Pivotal RabbitMQ is vulnerable to a denial of service attack
2022-05-24 17:01:50
fedora
fedora
[SECURITY] Fedora 30 Update: rabbitmq-server-3.7.22-1.fc30
2019-12-07 01:32:21
[SECURITY] Fedora 31 Update: rabbitmq-server-3.7.22-1.fc31
2019-12-07 01:51:04
redhat
redhat
(RHSA-2020:0078) Important: rabbitmq-server security update
2020-01-13 10:03:48
mageia
mageia
Updated rabbitmq-server packages fix security vulnerabilities
2021-08-06 12:33:48
suse
suse
Security update for rabbitmq-server (moderate)
2021-10-10 00:00:00
Security update for rabbitmq-server (moderate)
2021-10-04 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.7 High

AI Score

Confidence

High

0.451 Medium

EPSS

Percentile

97.4%

JSON
Related for USN-5004-1
openvas9osv6nessus14redhatcve2ubuntucve2checkpoint_advisories1symantec1nvd2prion2cvelist2debiancve2cve2archlinux1freebsd2veracode2debian1github1fedora2redhat1mageia1suse2oracle1