CVE-2017-4966 log
Source |
|
Severity | Medium |
Remote | No |
Type | Information disclosure |
Description | It has been discovered that the RabbitMQ management UI stores signed-in user credentials in a browser's local storage without expiration, making it possible to retrieve them using a chained attack. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-322 | rabbitmq | 3.6.8-1 | 3.6.9-1 | Medium | Fixed |