RabbitMQ maintainers security patch release for CVE-2026-57219
Security Patch Release
Summary
Hide ▲
Show ▼
RabbitMQ maintainers released fixed versions for multiple supported release lines, closing two access-control flaws that could expose OAuth client secrets and cross-tenant messaging data. The patch set addresses CVE-2026-57219 and CVE-2026-57221 in releases from 3.13.0 and later.
Related Happenings
Broadcom VMware Avi Load Balancer security update release
Security Patch Release
H score26
First: 14.07.2026 16:55
Last: 14.07.2026 16:55
Sources 1
About this happening:
**Broadcom** released **VMware Avi Load Balancer** updates that patch **seven potentially serious vulnerabilities**, including **authentication bypass**, **remote code execution**...
Broadcom VMware Avi Load Balancer security update release
Security Patch ReleaseAbout this happening: **Broadcom** released **VMware Avi Load Balancer** updates that patch **seven potentially serious vulnerabilities**, including **authentication bypass**, **remote code execution**...
Dify security patch release for CVE-2026-41947
Security Patch Release
H score34
First: 22.06.2026 19:13
Last: 22.06.2026 19:13
Sources 1
About this happening:
**Dify** shipped **version 1.14.2** to fix most of the **DifyTap** vulnerabilities, closing cross-tenant paths that could expose **AI chats**, **uploaded files**, and internal API...
Dify security patch release for CVE-2026-41947
Security Patch ReleaseAbout this happening: **Dify** shipped **version 1.14.2** to fix most of the **DifyTap** vulnerabilities, closing cross-tenant paths that could expose **AI chats**, **uploaded files**, and internal API...
LiteLLM v1.83.14-stable security fix release (multiple vulnerabilities)
Security Patch Release
H score42
First: 15.06.2026 19:39
Last: 15.06.2026 19:39
Sources 1
About this happening:
**BerriAI** shipped **LiteLLM v1.83.14-stable** to close a **three-CVE chain** that could let a low-privilege proxy user reach **full admin** and **run code on the server**. The u...
LiteLLM v1.83.14-stable security fix release (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **BerriAI** shipped **LiteLLM v1.83.14-stable** to close a **three-CVE chain** that could let a low-privilege proxy user reach **full admin** and **run code on the server**. The u...
TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch Release
H score45
First: 22.05.2026 11:19
Last: 22.05.2026 11:19
Sources 1
About this happening:
**TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....
TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch ReleaseAbout this happening: **TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....
Cisco Secure Workload REST API patch release (CVE-2026-20223)
Security Patch Release
H score55
First: 22.05.2026 08:36
Last: 22.05.2026 08:36
Sources 1
About this happening:
Cisco patched **CVE-2026-20223**, a **CVSS 10.0** Secure Workload REST API flaw that could expose sensitive data and allow configuration changes across tenant boundaries. The upda...
Cisco Secure Workload REST API patch release (CVE-2026-20223)
Security Patch ReleaseAbout this happening: Cisco patched **CVE-2026-20223**, a **CVSS 10.0** Secure Workload REST API flaw that could expose sensitive data and allow configuration changes across tenant boundaries. The upda...
Timeline
-
14.07.2026 16:48 2 articles · 2h ago
Miggo discloses RabbitMQ access-control flaws
Initial DisclosureMiggo disclosed two RabbitMQ access-control flaws, CVE-2026-57219 and CVE-2026-57221, that can leak the broker's OAuth client secret or let authenticated users bypass tenant boundaries and enumerate queue metadata. The flaws affected RabbitMQ release lines from 3.13.0 and later, and RabbitMQ maintainers have addressed them in versions 4.3.0, 4.2.6, 4.1.11, 4.0.20, and 3.13.15. There was no evidence of active exploitation before public disclosure.
Show sources
- RabbitMQ Flaws Could Leak OAuth Secrets and Expose Cross-Tenant Queue Metadata — thehackernews.com — 14.07.2026 16:48
- RabbitMQ Flaws Could Leak OAuth Secrets and Expose Cross-Tenant Queue Metadata — thehackernews.com — 14.07.2026 16:48