AVG-2109 log
| Package | rabbitmq |
| Status | Fixed |
| Severity | Low |
| Type | cross-site scripting |
| Affected | 3.8.16-1 |
| Fixed | 3.8.19-1 |
| Current | 4.2.0-1 [extra] |
| Ticket | None |
| Created | Mon Jun 28 15:57:26 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-32719 | Low | Yes | Cross-site scripting | In rabbitmq-server prior to version 3.8.18, when a federation link was displayed in the RabbitMQ management UI via the rabbitmq_federation_management... |
| CVE-2021-32718 | Low | Yes | Cross-site scripting | In rabbitmq-server prior to version 3.8.17, a new user being added via management UI could lead to the user's bane being rendered in a confirmation message... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 06 Jul 2021 | ASA-202107-17 | rabbitmq | cross-site scripting |