vulnerability

Arch Linux: Denial of service (CVE-2021-22116)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Jun 8, 2021	Jul 11, 2025	Nov 27, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Jun 8, 2021

Added

Jul 11, 2025

Modified

Nov 27, 2025

Description

RabbitMQ all versions prior to 3.8.16 are prone to a denial of service vulnerability due to improper input validation in AMQP 1.0 client connection endpoint.

An attacker can exploit the vulnerability by sending malicious AMQP messages to the target RabbitMQ instance having the AMQP 1.0 plugin enabled.

Solution

arch-linux-upgrade-latest

References

CVE-2021-22116
https://attackerkb.com/topics/CVE-2021-22116
URL-https://lists.debian.org/debian-lts-announce/2021/07/msg00011.html
URL-https://security.archlinux.org/ASA-202106-17
URL-https://tanzu.vmware.com/security/cve-2021-22116
CWE-400
CWE-20

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today