Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-31008

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker link...

7.5CVSS7.1AI score0.00307EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/20 12:0 a.m.31 views

SUSE SLES15 / openSUSE 15 : Feature update for rabbitmq-server313, erlang26, elixir115 (SUSE-SU-SUSE-FU-2024:2078-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-SUSE-FU-2024:2078-1 advisory. rabbitmq-server was implemented with a parallel versioned RPM package at version 3.13.1 jscPED-8414: - Securi...

7.5CVSS6.5AI score0.01437EPSS
Exploits2References21
OpenVAS
OpenVAS
added 2022/12/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2022:4378-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.00307EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/12/09 12:0 a.m.29 views

SUSE SLES15 / openSUSE 15 Security Update : rabbitmq-server (SUSE-SU-2022:4378-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:4378-1 advisory. - CVE-2022-31008: Fixed predictable secret seed in URI encryption bsc1205267. Tenable has extracted the preceding description...

7.5CVSS7.2AI score0.00307EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/10/06 12:0 a.m.8 views

CVE-2022-31008 Predictable credential obfuscation seed value used in rabbitmq-server

RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker link state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions...

5.5CVSS7.4AI score0.00307EPSS
Exploits0References2
CVE
CVE
added 2022/10/06 12:0 a.m.175 views

CVE-2022-31008

CVE-2022-31008 affects RabbitMQ where the shovel and federation plugins obfuscate URI state using an encryption key seeded with a predictable secret. This can, under certain plugin-related exceptions, reveal deobfuscatable data in node logs. Patched versions are 3.10.2, 3.9.18, and 3.8.32. If upg...

7.5CVSS6.1AI score0.00307EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2022/10/06 12:0 a.m.47 views

CVE-2022-31008 Predictable credential obfuscation seed value used in rabbitmq-server

RabbitMQ is a multi-protocol messaging and streaming broker. In affected versions the shovel and federation plugins perform URI obfuscation in their worker link state. The encryption key used to encrypt the URI was seeded with a predictable secret. This means that in case of certain exceptions...

5.5CVSS7.6AI score0.00307EPSS
Exploits0References2
Rows per page
Query Builder