VYPR

Maven package

org.apache.eventmesh/eventmesh-connector-rabbitmq

pkg:maven/org.apache.eventmesh/eventmesh-connector-rabbitmq

Vulnerabilities (1)

  • CVE-2023-26512Jul 17, 2023
    affected >= 1.7.0, <= 1.8.0

    CWE-502 Deserialization of Untrusted Data at the rabbitmq-connector plugin module in Apache EventMesh (incubating) V1.7.0\V1.8.0 on windows\linux\mac os e.g. platforms allows attackers to send controlled message and remote code execute via rabbitmq messages. Users can use the c