CVE-2019-11287

Published Nov 23, 2019

Last updated a year ago

CVSS high 7.5

Overview

Description: Pivotal RabbitMQ, versions 3.7.x prior to 3.7.21 and 3.8.x prior to 3.8.1, and RabbitMQ for Pivotal Platform, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain a web management plugin that is vulnerable to a denial of service attack. The "X-Reason" HTTP Header can be leveraged to insert a malicious Erlang format string that will expand and consume the heap, resulting in the server crashing.
Source: security@pivotal.io
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 3.0

Type: Secondary
Base score: 4.5
Impact score: 3.6
Exploitability score: 0.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-134
security@pivotal.io: CWE-400

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:pivotal_software:rabbitmq:*:*:*:*:*:pivotal_cloud_foundry:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A203B97-4B5E-4851-BA2D-DC551F31F3D3",
            "versionEndExcluding": "1.16.7",
            "versionStartIncluding": "1.16.0"
          },
          {
            "criteria": "cpe:2.3:a:pivotal_software:rabbitmq:*:*:*:*:*:pivotal_cloud_foundry:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A17844A1-5E52-4FB6-8261-BF32BA113733",
            "versionEndExcluding": "1.17.4",
            "versionStartIncluding": "1.17.0"
          },
          {
            "criteria": "cpe:2.3:a:pivotal_software:rabbitmq:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44D49187-912D-4F14-A2B4-BEEB9D278C9C",
            "versionEndExcluding": "3.7.21",
            "versionStartIncluding": "3.7.0"
          },
          {
            "criteria": "cpe:2.3:a:vmware:rabbitmq:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "729FDF48-97C3-4DDE-8549-C90224BFEB48",
            "versionEndExcluding": "3.8.1",
            "versionStartIncluding": "3.8.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:redhat:openstack:15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70108B60-8817-40B4-8412-796A592E4E5E"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References