CVE-2014-9568

puppetlabs-rabbitmq <4.1 - Info Disclosure

Title source: llm
STIX 2.1

Description

puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter.

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
http://puppetlabs.com/security/cve/cve-2014-9568

Scores

EPSS 0.0035
EPSS Percentile 27.2%

Details

CWE
CWE-200
Status published
Products (3)
voxpupuli/rabbitmq 3.0.0
voxpupuli/rabbitmq 3.1.0
voxpupuli/rabbitmq 4.0.0
Published Feb 03, 2015
Tracked Since Feb 18, 2026