CVE-2025-50200

CVSS v4.0

6.7

Medium

Vector

AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions RabbitMQ versions 3.13.7 and prior

Description The issue concerns RabbitMQ logging authorization headers in plaintext, encoded in base64, when queried with HTTP/s and basic authentication. This results in logs containing all request headers, including authorization headers with base64 encoded username:password, which can be easily decoded. Decoded credentials could potentially be used to gain control of the system, depending on the credentials.

Recommendations For versions 3.13.7 and prior, update to version 4.0.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the RabbitMQ logs to minimize the risk of exploitation. Avoid using basic authentication with sensitive credentials in the affected API endpoints until the issue is resolved.

Exploit

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

AZL-64166

BDU:2026-04665

BIT-RABBITMQ-2025-50200

CVE-2025-50200

GHSA-GH3X-4X42-FVQ8

OPENSUSE-SU-2025:15410-1

SUSE-SU-2025:03234-1

SUSE-SU-2025:3809-1

SUSE-SU-2025_03234-1

SUSE-SU-2025_3809-1

USN-7763-1

Affected Products

Debian

Rabbitmq

Red Os

Suse

Ubuntu

CVE-2025-50200

Weakness Enumeration

Related Identifiers

Affected Products

References · 27