from 0, < 3.3.5-1.1+deb8u1
from 0, < 3.6.6-1
HIGH7.8CVE-2017-4966An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and… from 0, < 3.6.10-1
HIGH7.5Predictable credential obfuscation seed value used in rabbitmq-server
from 0
HIGH7.5Pivotal RabbitMQ is vulnerable to a denial of service attack
from 0, < 3.8.3-1
HIGH7.5RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client co…
from 0
MEDIUM6.5Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a…
from 0
MEDIUM6.5The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (reso…
from 0, < 3.6.5-1
MEDIUM6.3Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') vulnerability in ninenines cowlib allows HTTP…
from 0
MEDIUM6.1RabbitMQ has XSS Vulnerability in an Error Message in Management UI
from 0
MEDIUM6.1An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and…
from 0, < 3.6.10-1
MEDIUM6.1rabbitmq-server - security update
from 0, < 3.6.10-1
MEDIUM6.1rabbitmq-server - security update
from 0, < 3.6.6-1+deb9u1
MEDIUM5.5RabbitMQ Node can log Basic Auth header from an HTTP request
from 0, < 4.0.5-6+deb13u2
MEDIUM5.4Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in RabbitMQ management UI
from 0
MEDIUM4.9rabbitmq-server - security update
from 0, < 3.8.9-3+deb11u1
MEDIUM4.9rabbitmq-server - security update
from 0, < 3.8.2-1+deb10u2
MEDIUM4.9rabbitmq-server - security update
from 0, < 3.8.9-3+deb11u1
MEDIUM4.8RabbitMQ: Unsanitized vhost names allow for XSS in management UI
from 0
MEDIUM4.8Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in RabbitMQ federation management plugin
from 0
MEDIUM4.8Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and v…
from 0, < 3.7.18-1
LOW3.5Cross-site Scripting in RabbitMQ
from 0, < 3.8.3-1
—CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitr…
from 0, < 3.4.1-1
—Cross-site scripting (XSS) vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to i…
from 0, < 3.4.1-1
—RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
from 0, < 3.4.1-1
—Multiple cross-site scripting (XSS) vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote au…
from 0, < 3.4.3-1