CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9877

An issue was discovered in Pivotal RabbitMQ 3.x before 3.5.8 and 3.6.x before 3.6.6 and RabbitMQ for PCF 1.5.x before 1.5.20, 1.6.x before 1.6.12, and 1.7.x before 1.7.7. MQTT (MQ Telemetry Transport) connection authentication with a username/password pair succeeds if an existing username is provided but the password is omitted from the connection request. Connections that use TLS with a client-provided certificate are not affected.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.6%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2016-9877

Broadcom » Rabbitmq Server » Version: 3.0.0

cpe:2.3:a:broadcom:rabbitmq_server:3.0.0
Broadcom » Rabbitmq Server » Version: 3.0.1

cpe:2.3:a:broadcom:rabbitmq_server:3.0.1
Broadcom » Rabbitmq Server » Version: 3.0.2

cpe:2.3:a:broadcom:rabbitmq_server:3.0.2
Broadcom » Rabbitmq Server » Version: 3.0.3

cpe:2.3:a:broadcom:rabbitmq_server:3.0.3
Broadcom » Rabbitmq Server » Version: 3.0.4

cpe:2.3:a:broadcom:rabbitmq_server:3.0.4
Broadcom » Rabbitmq Server » Version: 3.1.0

cpe:2.3:a:broadcom:rabbitmq_server:3.1.0
Broadcom » Rabbitmq Server » Version: 3.1.1

cpe:2.3:a:broadcom:rabbitmq_server:3.1.1
Broadcom » Rabbitmq Server » Version: 3.1.2

cpe:2.3:a:broadcom:rabbitmq_server:3.1.2
Broadcom » Rabbitmq Server » Version: 3.1.3

cpe:2.3:a:broadcom:rabbitmq_server:3.1.3
Broadcom » Rabbitmq Server » Version: 3.1.4

cpe:2.3:a:broadcom:rabbitmq_server:3.1.4
Broadcom » Rabbitmq Server » Version: 3.1.5

cpe:2.3:a:broadcom:rabbitmq_server:3.1.5
Broadcom » Rabbitmq Server » Version: 3.2.0

cpe:2.3:a:broadcom:rabbitmq_server:3.2.0
Broadcom » Rabbitmq Server » Version: 3.2.1

cpe:2.3:a:broadcom:rabbitmq_server:3.2.1
Broadcom » Rabbitmq Server » Version: 3.2.2

cpe:2.3:a:broadcom:rabbitmq_server:3.2.2
Broadcom » Rabbitmq Server » Version: 3.2.3

cpe:2.3:a:broadcom:rabbitmq_server:3.2.3
Broadcom » Rabbitmq Server » Version: 3.2.4

cpe:2.3:a:broadcom:rabbitmq_server:3.2.4
Broadcom » Rabbitmq Server » Version: 3.3.0

cpe:2.3:a:broadcom:rabbitmq_server:3.3.0
Broadcom » Rabbitmq Server » Version: 3.3.1

cpe:2.3:a:broadcom:rabbitmq_server:3.3.1
Broadcom » Rabbitmq Server » Version: 3.3.2

cpe:2.3:a:broadcom:rabbitmq_server:3.3.2
Broadcom » Rabbitmq Server » Version: 3.3.3

cpe:2.3:a:broadcom:rabbitmq_server:3.3.3
Broadcom » Rabbitmq Server » Version: 3.3.4

cpe:2.3:a:broadcom:rabbitmq_server:3.3.4
Broadcom » Rabbitmq Server » Version: 3.3.5

cpe:2.3:a:broadcom:rabbitmq_server:3.3.5
Broadcom » Rabbitmq Server » Version: 3.4.0

cpe:2.3:a:broadcom:rabbitmq_server:3.4.0
Broadcom » Rabbitmq Server » Version: 3.4.1

cpe:2.3:a:broadcom:rabbitmq_server:3.4.1
Broadcom » Rabbitmq Server » Version: 3.4.2

cpe:2.3:a:broadcom:rabbitmq_server:3.4.2
Broadcom » Rabbitmq Server » Version: 3.4.3

cpe:2.3:a:broadcom:rabbitmq_server:3.4.3
Broadcom » Rabbitmq Server » Version: 3.4.4

cpe:2.3:a:broadcom:rabbitmq_server:3.4.4
Broadcom » Rabbitmq Server » Version: 3.5.0

cpe:2.3:a:broadcom:rabbitmq_server:3.5.0
Broadcom » Rabbitmq Server » Version: 3.5.1

cpe:2.3:a:broadcom:rabbitmq_server:3.5.1
Broadcom » Rabbitmq Server » Version: 3.5.2

cpe:2.3:a:broadcom:rabbitmq_server:3.5.2
Broadcom » Rabbitmq Server » Version: 3.5.3

cpe:2.3:a:broadcom:rabbitmq_server:3.5.3
Broadcom » Rabbitmq Server » Version: 3.5.6

cpe:2.3:a:broadcom:rabbitmq_server:3.5.6
Pivotal Software » Rabbitmq » Version: 1.5.0

cpe:2.3:a:pivotal_software:rabbitmq:1.5.0
Pivotal Software » Rabbitmq » Version: 1.5.1

cpe:2.3:a:pivotal_software:rabbitmq:1.5.1
Pivotal Software » Rabbitmq » Version: 1.5.10

cpe:2.3:a:pivotal_software:rabbitmq:1.5.10
Pivotal Software » Rabbitmq » Version: 1.5.11

cpe:2.3:a:pivotal_software:rabbitmq:1.5.11
Pivotal Software » Rabbitmq » Version: 1.5.12

cpe:2.3:a:pivotal_software:rabbitmq:1.5.12
Pivotal Software » Rabbitmq » Version: 1.5.13

cpe:2.3:a:pivotal_software:rabbitmq:1.5.13
Pivotal Software » Rabbitmq » Version: 1.5.14

cpe:2.3:a:pivotal_software:rabbitmq:1.5.14
Pivotal Software » Rabbitmq » Version: 1.5.15

cpe:2.3:a:pivotal_software:rabbitmq:1.5.15
Pivotal Software » Rabbitmq » Version: 1.5.17

cpe:2.3:a:pivotal_software:rabbitmq:1.5.17
Pivotal Software » Rabbitmq » Version: 1.5.18

cpe:2.3:a:pivotal_software:rabbitmq:1.5.18
Pivotal Software » Rabbitmq » Version: 1.5.2

cpe:2.3:a:pivotal_software:rabbitmq:1.5.2
Pivotal Software » Rabbitmq » Version: 1.5.3

cpe:2.3:a:pivotal_software:rabbitmq:1.5.3
Pivotal Software » Rabbitmq » Version: 1.5.4

cpe:2.3:a:pivotal_software:rabbitmq:1.5.4
Pivotal Software » Rabbitmq » Version: 1.5.5

cpe:2.3:a:pivotal_software:rabbitmq:1.5.5
Pivotal Software » Rabbitmq » Version: 1.5.6

cpe:2.3:a:pivotal_software:rabbitmq:1.5.6
Pivotal Software » Rabbitmq » Version: 1.5.7

cpe:2.3:a:pivotal_software:rabbitmq:1.5.7
Pivotal Software » Rabbitmq » Version: 1.5.8

cpe:2.3:a:pivotal_software:rabbitmq:1.5.8
Pivotal Software » Rabbitmq » Version: 1.5.9

cpe:2.3:a:pivotal_software:rabbitmq:1.5.9
Pivotal Software » Rabbitmq » Version: 1.6.0

cpe:2.3:a:pivotal_software:rabbitmq:1.6.0
Pivotal Software » Rabbitmq » Version: 1.6.1

cpe:2.3:a:pivotal_software:rabbitmq:1.6.1
Pivotal Software » Rabbitmq » Version: 1.6.10

cpe:2.3:a:pivotal_software:rabbitmq:1.6.10
Pivotal Software » Rabbitmq » Version: 1.6.2

cpe:2.3:a:pivotal_software:rabbitmq:1.6.2
Pivotal Software » Rabbitmq » Version: 1.6.3

cpe:2.3:a:pivotal_software:rabbitmq:1.6.3
Pivotal Software » Rabbitmq » Version: 1.6.4

cpe:2.3:a:pivotal_software:rabbitmq:1.6.4
Pivotal Software » Rabbitmq » Version: 1.6.5

cpe:2.3:a:pivotal_software:rabbitmq:1.6.5
Pivotal Software » Rabbitmq » Version: 1.6.6

cpe:2.3:a:pivotal_software:rabbitmq:1.6.6
Pivotal Software » Rabbitmq » Version: 1.6.7

cpe:2.3:a:pivotal_software:rabbitmq:1.6.7
Pivotal Software » Rabbitmq » Version: 1.6.8

cpe:2.3:a:pivotal_software:rabbitmq:1.6.8
Pivotal Software » Rabbitmq » Version: 1.6.9

cpe:2.3:a:pivotal_software:rabbitmq:1.6.9
Pivotal Software » Rabbitmq » Version: 1.7.0

cpe:2.3:a:pivotal_software:rabbitmq:1.7.0
Pivotal Software » Rabbitmq » Version: 1.7.2

cpe:2.3:a:pivotal_software:rabbitmq:1.7.2
Pivotal Software » Rabbitmq » Version: 1.7.3

cpe:2.3:a:pivotal_software:rabbitmq:1.7.3
Pivotal Software » Rabbitmq » Version: 1.7.4

cpe:2.3:a:pivotal_software:rabbitmq:1.7.4
Pivotal Software » Rabbitmq » Version: 1.7.5

cpe:2.3:a:pivotal_software:rabbitmq:1.7.5
Pivotal Software » Rabbitmq » Version: 1.7.6

cpe:2.3:a:pivotal_software:rabbitmq:1.7.6
Pivotal Software » Rabbitmq » Version: 3.5.4

cpe:2.3:a:pivotal_software:rabbitmq:3.5.4
Pivotal Software » Rabbitmq » Version: 3.5.5

cpe:2.3:a:pivotal_software:rabbitmq:3.5.5
Pivotal Software » Rabbitmq » Version: 3.5.7

cpe:2.3:a:pivotal_software:rabbitmq:3.5.7
Pivotal Software » Rabbitmq » Version: 3.6.0

cpe:2.3:a:pivotal_software:rabbitmq:3.6.0
Pivotal Software » Rabbitmq » Version: 3.6.1

cpe:2.3:a:pivotal_software:rabbitmq:3.6.1
Pivotal Software » Rabbitmq » Version: 3.6.2

cpe:2.3:a:pivotal_software:rabbitmq:3.6.2
Pivotal Software » Rabbitmq » Version: 3.6.3

cpe:2.3:a:pivotal_software:rabbitmq:3.6.3
Pivotal Software » Rabbitmq » Version: 3.6.4

cpe:2.3:a:pivotal_software:rabbitmq:3.6.4
Pivotal Software » Rabbitmq » Version: 3.6.5

cpe:2.3:a:pivotal_software:rabbitmq:3.6.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9877

Products

Pricing

Contact Us