{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-10-29T00:00:00", "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-01T15:57:02", "orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical"}, "references": [{"name": "RHSA-2016:0308", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-0308.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://groups.google.com/forum/#%21topic/rabbitmq-users/-3Z2FyGtXhs"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.rabbitmq.com/release-notes/README-3.4.1.txt"}, {"name": "76091", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/76091"}, {"name": "[oss-security] 20150121 CVE Request: XSS and response-splitting bugs in rabbitmq management plugin", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2015/01/21/13"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@ubuntu.com", "ID": "CVE-2014-9650", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "RHSA-2016:0308", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2016-0308.html"}, {"name": "https://groups.google.com/forum/#!topic/rabbitmq-users/-3Z2FyGtXhs", "refsource": "CONFIRM", "url": "https://groups.google.com/forum/#!topic/rabbitmq-users/-3Z2FyGtXhs"}, {"name": "http://www.rabbitmq.com/release-notes/README-3.4.1.txt", "refsource": "CONFIRM", "url": "http://www.rabbitmq.com/release-notes/README-3.4.1.txt"}, {"name": "76091", "refsource": "BID", "url": "http://www.securityfocus.com/bid/76091"}, {"name": "[oss-security] 20150121 CVE Request: XSS and response-splitting bugs in rabbitmq management plugin", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2015/01/21/13"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T13:47:41.815Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2016:0308", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-0308.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://groups.google.com/forum/#%21topic/rabbitmq-users/-3Z2FyGtXhs"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.rabbitmq.com/release-notes/README-3.4.1.txt"}, {"name": "76091", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/76091"}, {"name": "[oss-security] 20150121 CVE Request: XSS and response-splitting bugs in rabbitmq management plugin", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2015/01/21/13"}]}]}, "cveMetadata": {"assignerOrgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "assignerShortName": "canonical", "cveId": "CVE-2014-9650", "datePublished": "2015-01-27T17:00:00", "dateReserved": "2015-01-27T00:00:00", "dateUpdated": "2024-08-06T13:47:41.815Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "B2F0CBEC-F440-45A0-8ED3-59C38B105BCC", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "68E1C34F-3CD0-40AD-83F8-4F1B941F0838", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "F741941D-F4C9-4F29-ADFF-AC8A4234DFDD", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "8DE2226B-850C-48BF-BF22-4061EF8262D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "6ED11458-F118-440F-88BE-E9EEF1231143", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "8B82788D-183B-4177-B802-5941EB2390D0", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "5D4A89FF-EEA9-4BAF-8F83-D9BCE1617544", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "51C91577-54C8-42BD-A5D2-17BBFDC72C0F", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "48FBD054-FEA5-4550-88CF-02C5DE814198", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "3D97CE3D-526F-4841-B235-03E7C91F60FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "B5F2EB8D-698A-4937-8272-035792C07E79", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "CE95D715-9F21-446B-8AFA-6B2CB5619DFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "62A39BD4-AB61-44B9-B5C9-FB6536F69A44", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "66E07A00-731E-4F8B-B670-347EB96F6991", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "B0A72AC2-F9A6-4ADF-8930-D39BA92DED89", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "3753E6C4-00C7-4297-8E98-D07BE9E3AF15", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "C2875491-991A-4014-B99C-A042A5D870DE", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "9BB67C92-9D18-48C5-A6E7-1CBE9F9AD4A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "3B2AC8B6-9743-4167-AF3A-EAF5D9AE53E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.6:*:*:*:*:*:*:*", "matchCriteriaId": "FC8A2268-4FA1-405A-9CA6-2522F5AA68CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:2.8.7:*:*:*:*:*:*:*", "matchCriteriaId": "9C6F7816-AB21-4D34-A98F-0159737329AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "93A123A0-1EDC-4EF6-9300-A265837EC18C", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "CC1069E3-5DAE-4B10-A18E-2FB8BE9CF8EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "856A46DD-B7B0-4649-9ADC-6927BDDFC2FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "A4AA3927-F1D2-472D-A505-5CED02059978", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "0A465750-6168-4319-866B-D844EB4C88FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "D27EDB36-9C20-471D-AFE3-36F62A2C106C", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "682BA23A-199F-4591-AD30-EF43B34C227F", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "7D55283F-EA8E-4D12-B49E-D5392242CCF0", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "BE08D41D-9782-44B1-A051-EF4BEC861C51", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "3DA0EBB7-35CF-4C57-99E3-F5AA0F09781F", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "051E5698-D006-4BE9-9C7E-5E70654CC1E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "5D29505A-FE4D-4CC2-96EA-13439B1536D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "6B7EA539-A2AB-4FD4-8CB5-575A594437F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "0EB3E04F-7C2D-4121-94E6-09C31BA44C37", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "EFAC64E9-0DF2-4350-B2A9-225E841CCF74", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "F8691A77-2BD3-4C6B-97BA-C5904149D9DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "B22BC770-52AF-44DD-BEC7-B989B8C08717", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "A1CE91D7-DA1B-4547-B903-A2536E4B3EA1", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "7B1078BE-B70C-4419-95AC-68ED4AC56EDE", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "27719DEB-CC36-4DAB-8564-248263F48010", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "D7975F3B-30A9-445B-9D39-8A308670264B", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "80944B21-FAC3-49A6-878F-173B5A5AD24E", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:rabbitmq_server:3.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "755456D9-7249-4092-970C-230729E2F856", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n CRLF en el plugin de gesti\u00f3n en RabbitMQ 2.1.0 hasta 3.4.x anterior a 3.4.1 permite a atacantes remotos inyectar cabeceras HTTP arbitrarias y realizar ataques de divisi\u00f3n de respuestas HTTP a trav\u00e9s del par\u00e1metro download en api/definitions."}], "evaluatorComment": "<a href=\"http://cwe.mitre.org/data/definitions/93.html\" target=\"_blank\">CWE-93: CWE-93: Improper Neutralization of CRLF Sequences ('CRLF Injection')</a>", "id": "CVE-2014-9650", "lastModified": "2025-04-02T14:13:43.180", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-01-27T20:03:15.080", "references": [{"source": "security@ubuntu.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-0308.html"}, {"source": "security@ubuntu.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/01/21/13"}, {"source": "security@ubuntu.com", "tags": ["Vendor Advisory"], "url": "http://www.rabbitmq.com/release-notes/README-3.4.1.txt"}, {"source": "security@ubuntu.com", "url": "http://www.securityfocus.com/bid/76091"}, {"source": "security@ubuntu.com", "url": "https://groups.google.com/forum/#%21topic/rabbitmq-users/-3Z2FyGtXhs"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2016-0308.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/01/21/13"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.rabbitmq.com/release-notes/README-3.4.1.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/76091"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://groups.google.com/forum/#%21topic/rabbitmq-users/-3Z2FyGtXhs"}], "sourceIdentifier": "security@ubuntu.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2016:0368", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "rabbitmq-server-0:3.1.5-6.1.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2016-03-08T00:00:00Z"}, {"advisory": "RHSA-2016:0369", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "rabbitmq-server-0:3.3.5-18.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2016-03-08T00:00:00Z"}, {"advisory": "RHSA-2016:0308", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "rabbitmq-server-0:3.3.5-18.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2016-02-29T00:00:00Z"}, {"advisory": "RHSA-2016:0367", "cpe": "cpe:/a:redhat:openstack:7::el7", "package": "rabbitmq-server-0:3.3.5-18.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7", "release_date": "2016-03-08T00:00:00Z"}], "bugzilla": {"description": "RabbitMQ: /api/definitions response splitting vulnerability", "id": "1185515", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1185515"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "verified"}, "cwe": "CWE-113", "details": ["CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions.", "A response-splitting vulnerability was discovered in RabbitMQ. An /api/definitions URL could be specified, which then caused an arbitrary additional header to be returned. A remote attacker could use this flaw to inject arbitrary HTTP headers and possibly gain access to secure data."], "name": "CVE-2014-9650", "package_state": [{"cpe": "cpe:/a:redhat:openstack:8", "fix_state": "Affected", "package_name": "rabbitmq-server", "product_name": "Red Hat OpenStack Platform 8 (Liberty)"}], "public_date": "2014-10-29T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-9650\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-9650"], "threat_severity": "Moderate"}