Detections
Analytics
Pivotal RabbitMQ 3.8.x < 3.8.16 Code Execution
high Nessus Plugin ID 198217
Language:
Synopsis
A web application running on the remote web server is affected by arbitrary code execution vulnerability.Description
RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins.A malicious actor can execute arbitrary code on the running RabbitMQ server by adding arbitrary plugins.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Pivotal RabbitMQ version 3.8.16 or later.See Also
https://tanzu.vmware.com/security/cve-2021-22117
https://github.com/rabbitmq/rabbitmq-server/releases/tag/v3.8.15
https://github.com/rabbitmq/rabbitmq-server/releases/tag/v3.8.16
Plugin Details
Severity: High
ID: 198217
File Name: rabbitmq_rce_win_3_8_16.nasl
Version: 1.2
Type: local
Agent: windows
Family: Misc.
Published: 5/31/2024
Updated: 6/3/2024
Configuration: Enable thorough checks
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 4.6
Temporal Score: 3.4
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2021-22117
CVSS v3
Risk Factor: High
Base Score: 7.8
Temporal Score: 6.8
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:pivotal_software:rabbitmq
Required KB Items: installed_sw/RabbitMQ
Exploit Ease: No known exploits are available
Patch Publication Date: 5/10/2021
Vulnerability Publication Date: 5/10/2021
Reference Information
CVE: CVE-2021-22117
IAVB: 2021-B-0029-S