RSS   Vulnerabilities for 'Puppetlabs-rabbitmq'   RSS

2015-02-03
 
CVE-2014-9568

CWE-200
 

 
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter.

 

 >>> Vendor: Puppetlabs 15 Products
Puppet
Puppet enterprise users
Puppet enterprise
Puppet dashboard
Mcollective
Facter
Hiera
Marionette-collective
Puppet server
Stdlib
Rabbitmq
Puppetlabs-rabbitmq
Puppet agent
Mcollective-puppet-agent
Mcollective-sshkey-security


Copyright 2024, cxsecurity.com

 

Back to Top