CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Rabbitmq | Vmware | 2.1.0 (including) | 2.1.0 (including) |
Rabbitmq | Vmware | 2.1.1 (including) | 2.1.1 (including) |
Rabbitmq | Vmware | 2.2.0 (including) | 2.2.0 (including) |
Rabbitmq | Vmware | 2.3.0 (including) | 2.3.0 (including) |
Rabbitmq | Vmware | 2.3.1 (including) | 2.3.1 (including) |
Rabbitmq | Vmware | 2.4.0 (including) | 2.4.0 (including) |
Rabbitmq | Vmware | 2.4.1 (including) | 2.4.1 (including) |
Rabbitmq | Vmware | 2.5.0 (including) | 2.5.0 (including) |
Rabbitmq | Vmware | 2.5.1 (including) | 2.5.1 (including) |
Rabbitmq | Vmware | 2.6.0 (including) | 2.6.0 (including) |
Rabbitmq | Vmware | 2.6.1 (including) | 2.6.1 (including) |
Rabbitmq | Vmware | 2.7.0 (including) | 2.7.0 (including) |
Rabbitmq | Vmware | 2.7.1 (including) | 2.7.1 (including) |
Rabbitmq | Vmware | 2.8.0 (including) | 2.8.0 (including) |
Rabbitmq | Vmware | 2.8.1 (including) | 2.8.1 (including) |
Rabbitmq | Vmware | 2.8.2 (including) | 2.8.2 (including) |
Rabbitmq | Vmware | 2.8.3 (including) | 2.8.3 (including) |
Rabbitmq | Vmware | 2.8.4 (including) | 2.8.4 (including) |
Rabbitmq | Vmware | 2.8.5 (including) | 2.8.5 (including) |
Rabbitmq | Vmware | 2.8.6 (including) | 2.8.6 (including) |
Rabbitmq | Vmware | 2.8.7 (including) | 2.8.7 (including) |
Rabbitmq | Vmware | 3.0.0 (including) | 3.0.0 (including) |
Rabbitmq | Vmware | 3.0.1 (including) | 3.0.1 (including) |
Rabbitmq | Vmware | 3.0.2 (including) | 3.0.2 (including) |
Rabbitmq | Vmware | 3.0.3 (including) | 3.0.3 (including) |
Rabbitmq | Vmware | 3.0.4 (including) | 3.0.4 (including) |
Rabbitmq | Vmware | 3.1.0 (including) | 3.1.0 (including) |
Rabbitmq | Vmware | 3.1.1 (including) | 3.1.1 (including) |
Rabbitmq | Vmware | 3.1.2 (including) | 3.1.2 (including) |
Rabbitmq | Vmware | 3.1.3 (including) | 3.1.3 (including) |
Rabbitmq | Vmware | 3.1.4 (including) | 3.1.4 (including) |
Rabbitmq | Vmware | 3.1.5 (including) | 3.1.5 (including) |
Rabbitmq | Vmware | 3.2.0 (including) | 3.2.0 (including) |
Rabbitmq | Vmware | 3.2.1 (including) | 3.2.1 (including) |
Rabbitmq | Vmware | 3.2.2 (including) | 3.2.2 (including) |
Rabbitmq | Vmware | 3.2.3 (including) | 3.2.3 (including) |
Rabbitmq | Vmware | 3.2.4 (including) | 3.2.4 (including) |
Rabbitmq | Vmware | 3.3.0 (including) | 3.3.0 (including) |
Rabbitmq | Vmware | 3.3.1 (including) | 3.3.1 (including) |
Rabbitmq | Vmware | 3.3.2 (including) | 3.3.2 (including) |
Rabbitmq | Vmware | 3.3.3 (including) | 3.3.3 (including) |
Rabbitmq | Vmware | 3.3.4 (including) | 3.3.4 (including) |
Rabbitmq | Vmware | 3.3.5 (including) | 3.3.5 (including) |
Rabbitmq | Vmware | 3.4.0 (including) | 3.4.0 (including) |