pivotal software spring advanced message queuing protocol vulnerabilities and exploits

(subscribe to this query)

668

VMScore

In Pivotal Spring AMQP versions before 1.7.4, 1.6.11, and 1.5.7, an org.springframework.amqp.core.Message may be unsafely deserialized when being converted into a string. A malicious payload could be crafted to exploit this and enable a remote code execution attack.

Pivotal Software Spring Advanced Message Queuing Protocol 1.7.3 Pivotal Software Spring Advanced Message Queuing Protocol 1.7.2 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.8 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.9 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.10 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.0 Pivotal Software Spring Advanced Message Queuing Protocol 1.7.0 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.0 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.5 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.7 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.1 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.1 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.2 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.3 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.3 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.4 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.5 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.6 Pivotal Software Spring Advanced Message Queuing Protocol 1.7.1 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.4 Pivotal Software Spring Advanced Message Queuing Protocol 1.6.6 Pivotal Software Spring Advanced Message Queuing Protocol 1.5.2

383

VMScore

Pivotal Spring AMQP, 1.x versions before 1.7.10 and 2.x versions before 2.0.6, expose a man-in-the-middle vulnerability due to lack of hostname validation. A malicious user that has the ability to intercept traffic would be able to view data in transit.

Pivotal Software Spring Advanced Message Queuing Protocol Pivotal Software Rabbitmq

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook