7 matches found
puppetlabs-rabbitmq allows local users to obtain sensitive information
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter...
GHSA-H3GH-978R-747W puppetlabs-rabbitmq allows local users to obtain sensitive information
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter...
Vulnerability in puppetlabs-rabbitmq
Puppet is the United States Puppet Labs a set of client/server C / S architecture based on the configuration management tools , it can be used to manage configuration files , users , cron tasks , packages , system services and so on. puppetlabs-stdlib is one of the implementation of the Advanced...
CVE-2014-9568
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter...
Design/Logic Flaw
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter...
CVE-2014-9568
CVE-2014-9568 affects puppetlabs-rabbitmq versions 3.0 through 4.1. The vulnerability arises because the Erlang cookie value is stored in the node’s facts, allowing local users to obtain sensitive information (demonstrated via Facter). Impact is partial confidentiality loss. Exploitation details ...
CVE-2014-9568
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter...