CVE-2026-57219 - RabbitMQ: Unauthenticated disclosure of OAuth client credentials via an HTTP API endpoint with certain less common OAuth 2 configurations
CVE ID :CVE-2026-57219 Published : July 10, 2026, 9:16 p.m. | 1 hour, 15 minutes ago Description :RabbitMQ is a messaging and streaming broker. Prior to 3.13.15, 4.0.20, 4.1.11, and 4.2.6, the obsolete GET /api/auth endpoint can disclose the OAuth 2 client secret on RabbitMQ installations...