Описание
RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.4.1-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [3.2.4-1]] |
| lucid | ignored | end of life |
| precise | not-affected | 2.7.1-0ubuntu4 |
| trusty | not-affected | 3.2.4-1 |
| trusty/esm | DNE | trusty was not-affected [3.2.4-1] |
| upstream | released | 3.4.1-1 |
| utopic | ignored | end of life |
| vivid | not-affected | 3.4.1-1 |
Показывать по
10
EPSS
Процентиль: 60%
0.00392
Низкий
5 Medium
CVSS2
Связанные уязвимости
redhat
больше 11 лет назад
RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
nvd
около 11 лет назад
RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
debian
около 11 лет назад
RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_u ...
github
больше 3 лет назад
RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
EPSS
Процентиль: 60%
0.00392
Низкий
5 Medium
CVSS2