Lucene search
GoogleOSV:CVE-2023-46118HistoryOct 25, 2023 - 6:17 p.m.
CVE-2023-46118
2023-10-2518:17:36
Google
osv.dev
9
rabbitmq
http api
dos vulnerability
patched
versions 3.11.24
3.12.7
RabbitMQ is a multi-protocol messaging and streaming broker. HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages. An authenticated user with sufficient credentials can publish a very large messages over the HTTP API and cause target node to be terminated by an “out-of-memory killer”-like mechanism. This vulnerability has been patched in versions 3.11.24 and 3.12.7.
Related
prion
prion
Design/Logic Flaw
2023-10-25 18:17:00
osv
osv
rabbitmq-server - security update
2023-12-13 00:00:00
BIT-2023-46118
2023-11-02 07:26:18
rabbitmq-server - security update
2023-12-01 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3687-1)
2023-12-14 00:00:00
Debian: Security Advisory (DSA-5571-1)
2023-12-04 00:00:00
openSUSE: Security Advisory for rabbitmq (SUSE-SU-2023:4939-1)
2024-03-04 00:00:00
debian
debian
[SECURITY] [DLA 3687-1] rabbitmq-server security update
2023-12-13 22:14:58
[SECURITY] [DSA 5571-1] rabbitmq-server security update
2023-12-01 20:29:42
cve
cve
CVE-2023-46118
2023-10-25 18:17:36
ubuntucve
ubuntucve
CVE-2023-46118
2023-10-25 00:00:00
nessus
nessus
Debian DLA-3687-1 : rabbitmq-server - LTS security update
2023-12-14 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : rabbitmq-server (SUSE-SU-2023:4939-1)
2023-12-21 00:00:00
RHEL 9 : Red Hat OpenStack Platform 17.1 (rabbitmq-server) (RHSA-2024:0217)
2024-01-16 00:00:00
redhat
redhat
ubuntu
ubuntu
RabbitMQ vulnerability
2023-11-21 00:00:00
cbl_mariner
cbl_mariner
veracode
veracode
Denial Of Service (DoS)
2023-11-28 15:34:54
cvelist
cvelist
nvd
nvd
CVE-2023-46118
2023-10-25 18:17:36
debiancve
debiancve
CVE-2023-46118
2023-10-25 18:17:36
redhatcve
redhatcve
CVE-2023-46118
2023-10-27 07:45:08