Test ID:	1.3.6.1.4.1.25623.1.1.12.2024.7143.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-7143-1)
Summary:	The remote host is missing an update for the 'rabbitmq-server' package(s) announced via the USN-7143-1 advisory.
Description:	Summary: The remote host is missing an update for the 'rabbitmq-server' package(s) announced via the USN-7143-1 advisory. Vulnerability Insight: Christian Rellmann discovered that RabbitMQ Server did not properly sanitize user input when adding a new user via the management UI. An attacker could possibly use this issue to perform cross site scripting and obtain sensitive information. (CVE-2021-32718) Fahimhusain Raydurg discovered that RabbitMQ Server did not properly sanitize user input when using the federation management plugin. An attacker could possibly use this issue to perform cross site scripting and obtain sensitive information. (CVE-2021-32719) Affected Software/OS: 'rabbitmq-server' package(s) on Ubuntu 20.04. Solution: Please install the updated package(s). CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2021-32718 https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-c3hj-rg5h-2772 http://seclists.org/fulldisclosure/2021/Dec/3 https://github.com/rabbitmq/rabbitmq-server/pull/3028 Common Vulnerability Exposure (CVE) ID: CVE-2021-32719 https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-5452-hxj4-773x https://herolab.usd.de/security-advisories/usd-2021-0011/ https://github.com/rabbitmq/rabbitmq-server/pull/3122
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.