Critical RabbitMQ Vulnerabilities Enable Broker Takeover via OAuth Secrets

Critical RabbitMQ Vulnerabilities Enable Broker Takeover via OAuth Secrets

First seen 13 Jul 2026, 21:56 UTC CsoonlineGbhackersThecyberexpressScworldwww.miggo.io+1 88% similarity 72.6

Article Content

Browse articles
ThreatCluster

Miggo Security discovered two critical vulnerabilities in RabbitMQ, a widely used open-source message broker. The flaws, CVE-2026-57219 and CVE-2026-57221, were present since early 2024 and allow unauthenticated attackers to access OAuth client secrets and authenticated users to enumerate queues and exchanges. CVE-2026-57219, with a CVSS score of 8.7, exposes the OAuth client secret through an obsolete management endpoint, enabling full broker takeover. CVE-2026-57221, with a CVSS score of 5.3, allows low-privileged users to view sensitive metadata. Both vulnerabilities affect RabbitMQ versions from 3.13.0 onward and have been patched in the latest releases. Organizations are advised to apply patches immediately and rotate any exposed OAuth secrets.

Key Points: • Two critical vulnerabilities in RabbitMQ allow unauthorized access to OAuth secrets. • CVE-2026-57219 can lead to complete broker takeover with a CVSS score of 8.7. • Organizations must patch affected RabbitMQ versions and rotate OAuth secrets to mitigate risks.

ThreatCluster AI

Timeline

2026-04-20
CVE-2026-5721 published
The vulnerability CVE-2026-5721 was disclosed, allowing exposure of OAuth client secrets.
Thecyberexpress
2026-07-10
CVE-2026-57219 and CVE-2026-57221 published
CVE-2026-57219 and CVE-2026-57221 were published, detailing critical vulnerabilities in RabbitMQ.
Csoonline
Recent
Patches released for RabbitMQ vulnerabilities
RabbitMQ released patches for CVE-2026-57219 and CVE-2026-57221, urging users to update immediately.
Scworld

Community

Browse all →