https://bugzilla.redhat.com/show_bug.cgi?id=1448336
Bug ID: 1448336 Summary: CVE-2017-4967 rabbitmq: XSS vulnerability in management UI Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team@redhat.com Reporter: anemec@redhat.com CC: aortega@redhat.com, apevec@redhat.com, ayoung@redhat.com, chrisw@redhat.com, cvsbot-xmlrpc@redhat.com, erlang@lists.fedoraproject.org, hubert.plociniczak@gmail.com, jeckersb@redhat.com, jjoyce@redhat.com, josh@fornwall.com, jschluet@redhat.com, kbasil@redhat.com, lemenkov@gmail.com, lhh@redhat.com, lpeer@redhat.com, markmc@redhat.com, plemenko@redhat.com, rbryant@redhat.com, rjones@redhat.com, sclewis@redhat.com, sisharma@redhat.com, srevivo@redhat.com, s@shk.io, tdecacqu@redhat.com
A cross site scripting vulnerability was found in the management UI of RabbitMQ.
External References:
https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_9