Find notable cyber news and cases, enriched with sources, timelines, and signals.

RabbitMQ maintainers security patch release for CVE-2026-57219

Security Patch Release
First reported
Last updated
Happening score
H score 29
1 unique sources, 1 articles

Summary

Hide ▲

RabbitMQ maintainers released fixed versions for multiple supported release lines, closing two access-control flaws that could expose OAuth client secrets and cross-tenant messaging data. The patch set addresses CVE-2026-57219 and CVE-2026-57221 in releases from 3.13.0 and later.

Related Happenings

Broadcom VMware Avi Load Balancer security update release

Security Patch Release
H score26 First: 14.07.2026 16:55 Last: 14.07.2026 16:55 Sources 1

About this happening: **Broadcom** released **VMware Avi Load Balancer** updates that patch **seven potentially serious vulnerabilities**, including **authentication bypass**, **remote code execution**...

Dify security patch release for CVE-2026-41947

Security Patch Release
H score34 First: 22.06.2026 19:13 Last: 22.06.2026 19:13 Sources 1

About this happening: **Dify** shipped **version 1.14.2** to fix most of the **DifyTap** vulnerabilities, closing cross-tenant paths that could expose **AI chats**, **uploaded files**, and internal API...

LiteLLM v1.83.14-stable security fix release (multiple vulnerabilities)

Security Patch Release
H score42 First: 15.06.2026 19:39 Last: 15.06.2026 19:39 Sources 1

About this happening: **BerriAI** shipped **LiteLLM v1.83.14-stable** to close a **three-CVE chain** that could let a low-privilege proxy user reach **full admin** and **run code on the server**. The u...

TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926

Security Patch Release
H score45 First: 22.05.2026 11:19 Last: 22.05.2026 11:19 Sources 1

About this happening: **TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....

Cisco Secure Workload REST API patch release (CVE-2026-20223)

Security Patch Release
H score55 First: 22.05.2026 08:36 Last: 22.05.2026 08:36 Sources 1

About this happening: Cisco patched **CVE-2026-20223**, a **CVSS 10.0** Secure Workload REST API flaw that could expose sensitive data and allow configuration changes across tenant boundaries. The upda...

Timeline

  1. 14.07.2026 16:48 2 articles · 2h ago

    Miggo discloses RabbitMQ access-control flaws

    Initial Disclosure

    Miggo disclosed two RabbitMQ access-control flaws, CVE-2026-57219 and CVE-2026-57221, that can leak the broker's OAuth client secret or let authenticated users bypass tenant boundaries and enumerate queue metadata. The flaws affected RabbitMQ release lines from 3.13.0 and later, and RabbitMQ maintainers have addressed them in versions 4.3.0, 4.2.6, 4.1.11, 4.0.20, and 3.13.15. There was no evidence of active exploitation before public disclosure.

    Show sources