← volver
CVE-2014-9494

CVE-2014-9494

EPSS 1.4%
RabbitMQ before 3.4.0 allows remote attackers to bypass the loopback_users restriction via a crafted X-Forwareded-For header.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/oss-sec/2015/q1/30https://exchange.xforce.ibmcloud.com/vulnerabilities/99685https://groups.google.com/forum/#%21topic/rabbitmq-users/DMkypbSvIyMhttp://www.rabbitmq.com/release-notes/README-3.4.0.txt