Описание
Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libcloud | not-affected | package |
Примечания
version prior to 0.12.3 don't include a DigitalOcean driver
EPSS
Процентиль: 68%
0.00565
Низкий
Связанные уязвимости
nvd
около 12 лет назад
Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.
github
больше 3 лет назад
Libcloud does not properly scrub data when destroying a DigitalOcean node
EPSS
Процентиль: 68%
0.00565
Низкий