Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-22116

Опубликовано: 08 июн. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 7.5

Описание

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.

РелизСтатусПримечание
bionic

released

3.6.10-1ubuntu0.5
devel

released

3.8.9-3ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

3.6.10-1ubuntu0.5
esm-infra/focal

released

3.8.2-0ubuntu1.3
esm-infra/xenial

released

3.5.7-1ubuntu0.16.04.4+esm1
focal

released

3.8.2-0ubuntu1.3
groovy

released

3.8.5-1ubuntu0.2
hirsute

released

3.8.9-2ubuntu0.1
impish

released

3.8.9-3ubuntu1

Показывать по

Ссылки на источники

EPSS

Процентиль: 77%
0.01026
Низкий

4.3 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-22116

CVSS3: 5.9
redhat
больше 4 лет назад

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.

nvd логотип

CVE-2021-22116

CVSS3: 7.5
nvd
больше 4 лет назад

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.

debian логотип

CVE-2021-22116

CVSS3: 7.5
debian
больше 4 лет назад

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service ...

github логотип

GHSA-5hjq-8gx9-79g4

CVSS3: 7.5
github
больше 3 лет назад

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint. A malicious user can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.

fstec логотип

BDU:2021-05248

CVSS3: 7.5
fstec
почти 5 лет назад

Уязвимость плагина AMQP 1.0 брокера сообщений RabbitMQ, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 77%
0.01026
Низкий

4.3 Medium

CVSS2

7.5 High

CVSS3