---

CVE-2021-22117 - log back

CVE-2021-22117 edited at 18 May 2021 12:20:35
Severity	- Unknown + Medium
Remote	- Unknown + Local
Type	- Unknown + Arbitrary code execution
Description	+ RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins. + + A malicious actor can execute arbitrary code on the running RabbitMQ server by adding arbitrary plugins.
References	+ https://tanzu.vmware.com/security/cve-2021-22117

CVE-2021-22117 created at 18 May 2021 12:19:58
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes