You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
CVE-2018-11087 More information
moderate severity
Vulnerable versions: < 4.8.0
Patched version: 4.8.0
Pivotal Spring AMQP, 1.x versions prior to 1.7.10 and 2.x versions prior to 2.0.6, expose a man-in-the-middle vulnerability due to lack of hostname validation. A malicious user that has the ability to intercept traffic would be able to view data in transit.
The text was updated successfully, but these errors were encountered:
Remediation:
Upgrade com.rabbitmq:amqp-client to version 4.8.0 or later. For example:
Details:
CVE-2018-11087 More information
moderate severity
Vulnerable versions: < 4.8.0
Patched version: 4.8.0
Pivotal Spring AMQP, 1.x versions prior to 1.7.10 and 2.x versions prior to 2.0.6, expose a man-in-the-middle vulnerability due to lack of hostname validation. A malicious user that has the ability to intercept traffic would be able to view data in transit.
The text was updated successfully, but these errors were encountered: