Main Vulnerability Database Vulnerabilities #VU16503

Security restrictions bypass in RabbitMQ - CVE-2018-1279

Published: December 11, 2018 / Updated: August 19, 2020

Vulnerability identifier: #VU16503

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-1279

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: VMware, Inc

Affected software:
RabbitMQ

Detailed vulnerability description

The vulnerability allows a remote authenticated attacker to bypass security restrictions on the target system.

The vulnerability exists in Pivotal Software RabbitMQ due to improper security restrictions on servers in an MQ cluster. A remote authenticated attacker can use a deterministically generated cookie that is shared between all machines in the cluster of an affected system and gain unauthorized access, which could be used to conduct further attacks.

How to mitigate CVE-2018-1279

Install update from vendor's website.

Sources

https://pivotal.io/security/cve-2018-1279

Security restrictions bypass in RabbitMQ - CVE-2018-1279

Detailed vulnerability description

How to mitigate CVE-2018-1279

Sources

Please verify you're human