pkg:Debian/rabbitmq-server

所有已知漏洞

• CRITICAL9.8CVE-2016-9877rabbitmq-server - security update
  from 0, < 3.6.6-1
• CRITICAL9.8CVE-2016-9877rabbitmq-server - security update
  from 0, < 3.3.5-1.1+deb8u1
• HIGH7.8CVE-2017-4966An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and…
  from 0, < 3.6.10-1
• HIGH7.5CVE-2022-31008Predictable credential obfuscation seed value used in rabbitmq-server
  from 0
• HIGH7.5CVE-2019-11287Pivotal RabbitMQ is vulnerable to a denial of service attack
  from 0, < 3.8.3-1
• HIGH7.5CVE-2021-22116RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client co…
  from 0
• MEDIUM6.5CVE-2018-1279Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a…
  from 0
• MEDIUM6.5CVE-2015-8786The Management plugin in RabbitMQ before 3.6.1 allows remote authenticated users with certain privileges to cause a denial of service (reso…
  from 0, < 3.6.5-1
• MEDIUM6.1CVE-2025-30219RabbitMQ has XSS Vulnerability in an Error Message in Management UI
  from 0
• MEDIUM6.1CVE-2017-4967An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and…
  from 0, < 3.6.10-1
• MEDIUM6.1CVE-2017-4965rabbitmq-server - security update
  from 0, < 3.6.6-1+deb9u1
• MEDIUM6.1CVE-2017-4965rabbitmq-server - security update
  from 0, < 3.6.10-1
• MEDIUM5.5CVE-2025-50200RabbitMQ Node can log Basic Auth header from an HTTP request
  from 0, < 4.0.5-6+deb13u2
• MEDIUM5.4CVE-2021-32718Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in RabbitMQ management UI
  from 0
• MEDIUM4.9CVE-2023-46118Denial of Service by publishing large messages over the HTTP API
  from 0, < 3.8.2-1+deb10u2
• MEDIUM4.9CVE-2023-46118Denial of Service by publishing large messages over the HTTP API
  from 0, < 3.8.9-3+deb11u1
• MEDIUM4.9CVE-2023-46118Denial of Service by publishing large messages over the HTTP API
  from 0, < 3.8.9-3+deb11u1
• MEDIUM4.8CVE-2021-32719Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in RabbitMQ federation management plugin
  from 0
• MEDIUM4.8CVE-2019-11281Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and v…
  from 0, < 3.7.18-1
• LOW3.5CVE-2019-11291Cross-site Scripting in RabbitMQ
  from 0, < 3.8.3-1
• —CVE-2026-44839RabbitMQ is a messaging and streaming broker.
  from 0
• —CVE-2014-9650CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitr…
  from 0, < 3.4.1-1
• —CVE-2014-9649Cross-site scripting (XSS) vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to i…
  from 0, < 3.4.1-1
• —CVE-2014-9494RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
  from 0, < 3.4.1-1
• —CVE-2015-0862Multiple cross-site scripting (XSS) vulnerabilities in the management web UI in the RabbitMQ management plugin before 3.4.3 allow remote au…
  from 0, < 3.4.3-1