Lucene search
DellCVELIST:CVE-2017-4966HistoryJun 13, 2017 - 6:00 a.m.
CVE-2017-4966
2017-06-1306:00:00
dell
www.cve.org
An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. RabbitMQ management UI stores signed-in user credentials in a browser’s local storage without expiration, making it possible to retrieve them using a chained attack.
CNA Affected
[
{
"product": "Pivotal RabbitMQ",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Pivotal RabbitMQ"
}
]
}
]Related
osv
osv
CVE-2017-4966
2017-06-13 06:29:00
rabbitmq-server vulnerability
2023-07-31 14:27:52
rabbitmq-server - security update
2021-07-19 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : RabbitMQ vulnerability (USN-6265-1)
2023-07-31 00:00:00
Pivotal RabbitMQ Management Plugin 3.4.x / 3.5.x / 3.6.x < 3.6.9 Multiple Vulnerabilities
2017-05-19 00:00:00
RHEL 6 : rabbitmq-server (Unpatched Vulnerability)
2024-06-03 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6265-1)
2023-08-01 00:00:00
Debian: Security Advisory (DLA-2710-1)
2021-07-20 00:00:00
redhatcve
redhatcve
CVE-2017-4966
2017-05-05 09:19:48
cve
cve
CVE-2017-4966
2017-06-13 06:29:00
ubuntucve
ubuntucve
CVE-2017-4966
2017-06-13 00:00:00
prion
prion
Design/Logic Flaw
2017-06-13 06:29:00
nvd
nvd
CVE-2017-4966
2017-06-13 06:29:00
ubuntu
ubuntu
RabbitMQ vulnerability
2023-07-31 00:00:00
debiancve
debiancve
CVE-2017-4966
2017-06-13 06:29:00
debian
debian
[SECURITY] [DLA 2710-1] rabbitmq-server security update
2021-07-19 17:21:29