CVE-2021-35227

MEDIUM

RabbitMQ Plugin <2020.2.6 - Info Disclosure

Title source: llm

Description

The HTTP interface was enabled for RabbitMQ Plugin in ARM 2020.2.6 and the ability to configure HTTPS was not available.

References (2)

Scores

CVSS v3 4.7
EPSS 0.0071
EPSS Percentile 72.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-502 CWE-79
Status published

Affected Products (1)

solarwinds/access_rights_manager < 2020.2.6

Timeline

Published Oct 21, 2021
Tracked Since Feb 18, 2026