CVE-2025-50200

19.06.2025, 17:15

RabbitMQ is a messaging and streaming broker. In versions 3.13.7 and prior, RabbitMQ is logging authorization headers in plaintext encoded in base64. When querying RabbitMQ api with HTTP/s with basic authentication it creates logs with all headers in request, including authorization headers which show base64 encoded username:password. This is easy to decode and afterwards could be used to obtain control to the system depending on credentials. This issue has been patched in version 4.0.8.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
GitHub_M	CNA	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 3%

Vendor	Product	Version
broadcom	rabbitmq_server	𝑥 < 4.0.8

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rabbitmq-server

bullseye (security)	3.8.9-3+deb11u1 fixed
bullseye	3.8.9-3+deb11u1 not-affected
trixie	no-dsa
bookworm	3.10.8-1.1+deb12u1 not-affected
bookworm (security)	3.10.8-1.1+deb12u1 fixed
forky	4.0.5-10 fixed
sid	4.0.5-10 fixed

Ubuntu Releases

Ubuntu Product

Codename

rabbitmq-server

plucky	needed
oracular	ignored
noble	not-affected
jammy	not-affected
focal	not-affected
bionic	not-affected
xenial	not-affected

Known Exploits!

https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-gh3x-4x42-fvq8

Common Weakness Enumeration

CWE-532 - Insertion of Sensitive Information into Log File
Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

References

https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-gh3x-4x42-fvq8