Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2023/07/31 12:0 a.m.26 views

Ubuntu 16.04 ESM : RabbitMQ vulnerability (USN-6265-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-6265-1 advisory. It was discovered that RabbitMQ incorrectly handled certain signed-in user credentials. An attacker could possibly use this issue to expose sensitive information...

7.8CVSS5.8AI score0.00394EPSS
Exploits0References2
NVD
NVD
added 2019/11/22 11:15 p.m.45 views

CVE-2019-11291

Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious use...

4.8CVSS4.1AI score0.00796EPSS
Exploits0References2
OSV
OSV
added 2019/11/22 11:15 p.m.20 views

CVE-2019-11291

Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious use...

4.8CVSS5.8AI score0.00796EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/11/22 11:15 p.m.16 views

CVE-2019-11291

Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious use...

4.8CVSS5.5AI score0.00796EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2019/11/22 10:56 p.m.22 views

CVE-2019-11291

Pivotal RabbitMQ, 3.7 versions prior to v3.7.20 and 3.8 version prior to v3.8.1, and RabbitMQ for PCF, 1.16.x versions prior to 1.16.7 and 1.17.x versions prior to 1.17.4, contain two endpoints, federation and shovel, which do not properly sanitize user input. A remote authenticated malicious use...

4.8CVSS3.7AI score0.00796EPSS
Exploits0
NVD
NVD
added 2019/10/16 4:15 p.m.17 views

CVE-2019-11281

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user...

4.8CVSS4.6AI score0.01165EPSS
Exploits0References5
OSV
OSV
added 2019/10/16 4:15 p.m.23 views

CVE-2019-11281

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user...

4.8CVSS6.3AI score0.01165EPSS
Exploits0References5
OSV
OSV
added 2019/10/16 4:15 p.m.4 views

DEBIAN-CVE-2019-11281

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user...

4.8CVSS5.3AI score0.01165EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/10/16 4:15 p.m.30 views

CVE-2019-11281

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user...

4.8CVSS5.8AI score0.01165EPSS
Exploits0References2
CVE
CVE
added 2019/10/16 3:23 p.m.250 views

CVE-2019-11281

CVE-2019-11281 affects Pivotal RabbitMQ and RabbitMQ for PCF where two UI components (virtual host limits page and federation management UI) fail to sanitize user input. A remote authenticated administrator could craft a cross-site scripting attack to access virtual hosts and policy management in...

4.8CVSS4.9AI score0.01165EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2019/10/16 3:23 p.m.37 views

CVE-2019-11281

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user...

4.8CVSS4.6AI score0.01165EPSS
Exploits0
NVD
NVD
added 2017/06/13 6:29 a.m.17 views

CVE-2017-4965

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS6AI score0.03329EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/06/13 6:29 a.m.22 views

CVE-2017-4965

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS6.8AI score0.03329EPSS
Exploits0References2
NVD
NVD
added 2017/06/13 6:29 a.m.19 views

CVE-2017-4967

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS6AI score0.01915EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/06/13 6:29 a.m.27 views

CVE-2017-4966

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. RabbitMQ management UI stores signed-...

7.8CVSS6.3AI score0.00394EPSS
Exploits0References3
Prion
Prion
added 2017/06/13 6:29 a.m.20 views

Design/Logic Flaw

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

4.3CVSS5.9AI score0.03329EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2017/06/13 6:29 a.m.21 views

Design/Logic Flaw

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

4.3CVSS5.9AI score0.03329EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2017/06/13 6:29 a.m.23 views

CVE-2017-4967

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. Several forms in the RabbitMQ...

6.1CVSS6AI score0.03329EPSS
Exploits0References2
OSV
OSV
added 2017/06/13 6:29 a.m.24 views

CVE-2017-4966

An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PCF versions: all 1.5.x versions, 1.6.x versions prior to 1.6.18, and 1.7.x versions prior to 1.7.15. RabbitMQ management UI stores signed-...

7.8CVSS6.5AI score0.00394EPSS
Exploits0References2
CVE
CVE
added 2017/06/13 6:0 a.m.105 views

CVE-2017-4966

CVE-2017-4966 affects RabbitMQ server and RabbitMQ for PCF. The vulnerability is in the RabbitMQ management UI , which stores signed-in user credentials in the browser’s localStorage with no expiration, enabling retrieval via a chained attack. Affected versions include all 3.4.x, all 3.5.x, and 3...

7.8CVSS7.2AI score0.00394EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder