Vulnerabilities > Pivotal Software > Spring Advanced Message Queuing Protocol > 1.6.11

DATE CVE VULNERABILITY TITLE RISK
2018-09-14 CVE-2018-11087 Improper Certificate Validation vulnerability in multiple products
Pivotal Spring AMQP, 1.x versions prior to 1.7.10 and 2.x versions prior to 2.0.6, expose a man-in-the-middle vulnerability due to lack of hostname validation.
network
high complexity
pivotal-software vmware CWE-295
5.9