This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update for rabbitmq-server fixes the following issue :
- CVE-2016-9877: An issue in Pivotal RabbitMQ caused
connection authentication with a username/password pair
to succeed if an existing username was provided but the
password is omitted from the connection request.
Connections that use TLS with a client-provided
certificate were not affected (bsc#1017642).
See also :
Update the affected rabbitmq-server packages.
Risk factor :
High / CVSS Base Score : 7.5