CVE-2025-50200

EUVD-2025-18689

19.06.2025, 17:15

RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which show base64 encoded username:password. This is easy to decode and afterwards could be used to obtain control to the system depending on credentials. This issue has been patched in version 4.0.8.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 4%

Affected Products (NVD)

Vendor	Product	Version
broadcom	rabbitmq_server	𝑥 < 4.0.8

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rabbitmq-server

bookworm	3.10.8-1.1+deb12u1 not-affected
bookworm (security)	3.10.8-1.1+deb12u1 fixed
bullseye	3.8.9-3+deb11u1 not-affected
bullseye (security)	3.8.9-3+deb11u1 fixed
forky	4.0.5-10 fixed
sid	4.0.5-11 fixed
trixie	4.0.5-6+deb13u2 fixed

Ubuntu Releases

Ubuntu Product

Codename

rabbitmq-server

bionic	not-affected
focal	not-affected
jammy	not-affected
noble	not-affected
oracular	ignored
plucky	Fixed 4.0.5-2ubuntu2.1 released
xenial	not-affected

Known Exploits!

https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-gh3x-4x42-fvq8

Common Weakness Enumeration

CWE-532 - Insertion of Sensitive Information into Log File
Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

References

https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-gh3x-4x42-fvq8