CVE-2021-22117

May 25, 2021

RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins.

Summary:

RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins.

Reference Links(if available):

  • https://tanzu.vmware.com/security/cve-2021-22117

  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • You may have missed

    image

    [INCRANSOM] – Ransomware Victim: Hadwins Volkswagen

    November 25, 2024
    image

    [LYNX] – Ransomware Victim: Hypertype

    November 25, 2024
    image

    [INCRANSOM] – Ransomware Victim: Nicholsons Solicitors

    November 25, 2024
    image

    [RAWORLD] – Ransomware Victim: Co****nt

    November 25, 2024
    image

    [KILLSEC] – Ransomware Victim: inv[[.][.][.]]nator

    November 25, 2024