Main Vulnerability Database SB2018121210

SB2018121210 - Security restrictions bypass in Pivotal RabbitMQ

Published: December 12, 2018 Updated: August 19, 2020

Security Bulletin ID SB2018121210

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Security restrictions bypass (CVE-ID: CVE-2018-1279)

The vulnerability allows a remote authenticated attacker to bypass security restrictions on the target system.

The vulnerability exists in Pivotal Software RabbitMQ due to improper security restrictions on servers in an MQ cluster. A remote authenticated attacker can use a deterministically generated cookie that is shared between all machines in the cluster of an affected system and gain unauthorized access, which could be used to conduct further attacks.

Remediation

Install update from vendor's website.

References

https://pivotal.io/security/cve-2018-1279